exploitDog

GHSA-qc73-vcr6-7q67

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Multiple buffer overflows in the Syslog server in ManageEngine EventLog Analyzer 6.1 allow remote attackers to cause a denial of service (SysEvttCol.exe process crash) or possibly execute arbitrary code via a long Syslog PRI message header to UDP port (1) 513 or (2) 514. Fixed in 7.2 Build 7020.

Multiple buffer overflows in the Syslog server in ManageEngine EventLog Analyzer 6.1 allow remote attackers to cause a denial of service (SysEvttCol.exe process crash) or possibly execute arbitrary code via a long Syslog PRI message header to UDP port (1) 513 or (2) 514. Fixed in 7.2 Build 7020.

Ссылки

EPSS

Процентиль: 79%

0.01323

Низкий

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2010-4840

nvd

больше 14 лет назад

Multiple buffer overflows in the Syslog server in ManageEngine EventLog Analyzer 6.1 allow remote attackers to cause a denial of service (SysEvttCol.exe process crash) or possibly execute arbitrary code via a long Syslog PRI message header to UDP port (1) 513 or (2) 514. Fixed in 7.2 Build 7020.

EPSS

Процентиль: 79%

0.01323

Низкий

CVE ID

Дефекты

CWE-119