exploitDog

CVE-2012-3797

Опубликовано: 25 июн. 2012

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, does not properly check packet sizes before reusing packet memory buffers, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a short crafted packet with a certain opcode.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:pro-face:pro-server_ex:*:*:*:*:*:*:*:*

Версия до 1.30.000 (включая)

cpe:2.3:a:pro-face:pro-server_ex:1.21.000:*:*:*:*:*:*:*

cpe:2.3:a:pro-face:pro-server_ex:1.23.000:*:*:*:*:*:*:*

cpe:2.3:a:pro-face:pro-server_ex:1.24.200:*:*:*:*:*:*:*

cpe:2.3:a:pro-face:wingp_pc_runtime:*:*:*:*:*:*:*:*

Версия до 3.1.00 (включая)

EPSS

Процентиль: 98%

0.49199

Средний

10 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-ffwm-vfgc-28pp

github

больше 3 лет назад

Pro-face WinGP PC Runtime 3.1.00 and earlier, and ProServr.exe in Pro-face Pro-Server EX 1.30.000 and earlier, does not properly check packet sizes before reusing packet memory buffers, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a short crafted packet with a certain opcode.

EPSS

Процентиль: 98%

0.49199

Средний

10 Critical

CVSS2

Дефекты

CWE-119