CVE-2011-0517

Опубликовано: 20 янв. 2011

Источник: nvd

CVSS2: 9.3

EPSS Высокий

Описание

Stack-based buffer overflow in Sielco Sistemi Winlog Pro 2.07.00 and earlier, when Run TCP/IP server is enabled, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted 0x02 opcode to TCP port 46823.

Ссылки

http://aluigi.org/adv/winlog_1-adv.txt
Exploit
http://osvdb.org/70418
http://secunia.com/advisories/42894
Vendor Advisory
http://securityreason.com/securityalert/8280
http://www.exploit-db.com/exploits/15992
Exploit
http://www.kb.cert.org/vuls/id/496040
US Government Resource
http://www.securityfocus.com/bid/45813
Exploit
http://www.us-cert.gov/control_systems/pdf/ICSA-11-017-02.pdf
http://www.vupen.com/english/advisories/2011/0126
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/64716
http://aluigi.org/adv/winlog_1-adv.txt
Exploit
http://osvdb.org/70418
http://secunia.com/advisories/42894
Vendor Advisory
http://securityreason.com/securityalert/8280
http://www.exploit-db.com/exploits/15992
Exploit
http://www.kb.cert.org/vuls/id/496040
US Government Resource
http://www.securityfocus.com/bid/45813
Exploit
http://www.us-cert.gov/control_systems/pdf/ICSA-11-017-02.pdf
http://www.vupen.com/english/advisories/2011/0126
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/64716

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sielcosistemi:winlog_pro:*:*:*:*:*:*:*:*

Версия до 2.07.00 (включая)

EPSS

Процентиль: 99%

0.7109

Высокий

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-m9xq-xgvf-jw86

github

больше 3 лет назад