Описание
Multiple buffer overflows in the Syslog server in ManageEngine EventLog Analyzer 6.1 allow remote attackers to cause a denial of service (SysEvttCol.exe process crash) or possibly execute arbitrary code via a long Syslog PRI message header to UDP port (1) 513 or (2) 514. Fixed in 7.2 Build 7020.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:manageengine:eventlog_analyzer:6.1:*:*:*:*:*:*:*
EPSS
Процентиль: 80%
0.01323
Низкий
7.5 High
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
больше 3 лет назад
Multiple buffer overflows in the Syslog server in ManageEngine EventLog Analyzer 6.1 allow remote attackers to cause a denial of service (SysEvttCol.exe process crash) or possibly execute arbitrary code via a long Syslog PRI message header to UDP port (1) 513 or (2) 514. Fixed in 7.2 Build 7020.
EPSS
Процентиль: 80%
0.01323
Низкий
7.5 High
CVSS2
Дефекты
CWE-119