Описание
Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedded web server in the Communication Server (CS) in Alcatel-Lucent OmniPCX Enterprise before R9.0 H1.301.50 allow remote attackers to execute arbitrary code via crafted HTTP headers.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.0 (включая)
Одно из
cpe:2.3:a:alcatel-lucent:omnipcx:*:*:enterprise:*:*:*:*:*
cpe:2.3:a:alcatel-lucent:omnipcx:5.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:alcatel-lucent:omnipcx:6.2:*:enterprise:*:*:*:*:*
cpe:2.3:a:alcatel-lucent:omnipcx:7.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:alcatel-lucent:omnipcx:7.1:*:enterprise:*:*:*:*:*
cpe:2.3:a:alcatel-lucent:omnipcx:8.0:*:enterprise:*:*:*:*:*
EPSS
Процентиль: 74%
0.00826
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
github
больше 3 лет назад
Multiple stack-based buffer overflows in unspecified CGI programs in the Unified Maintenance Tool web interface in the embedded web server in the Communication Server (CS) in Alcatel-Lucent OmniPCX Enterprise before R9.0 H1.301.50 allow remote attackers to execute arbitrary code via crafted HTTP headers.
EPSS
Процентиль: 74%
0.00826
Низкий
5.8 Medium
CVSS2
Дефекты
CWE-119