Описание
Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote attackers to execute arbitrary code via certain ActiveX controls.
Ссылки
- PatchVendor Advisory
- ExploitVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
- PatchThird Party AdvisoryUS Government Resource
- PatchVendor Advisory
- ExploitVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
- PatchThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:symantec_veritas:storage_exec:5.3_rev._2190r:*:*:*:*:*:*:*
cpe:2.3:a:symantec_veritas:storagecentral:5.2_rev._2190r:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.13701
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote attackers to execute arbitrary code via certain ActiveX controls.
EPSS
Процентиль: 94%
0.13701
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other