CVE-2011-0517

Sažetak

Stack-based buffer overflow in Sielco Sistemi Winlog Pro 2.07.00 and earlier, when Run TCP/IP server is enabled, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted 0x02 opcode to TCP port 46823.

Reference

http://aluigi.org/adv/winlog_1-adv.txt
http://osvdb.org/70418
http://secunia.com/advisories/42894
http://securityreason.com/securityalert/8280
http://www.exploit-db.com/exploits/15992
http://www.kb.cert.org/vuls/id/496040
http://www.securityfocus.com/bid/45813
http://www.us-cert.gov/control_systems/pdf/ICSA-11-017-02.pdf
http://www.vupen.com/english/advisories/2011/0126
https://exchange.xforce.ibmcloud.com/vulnerabilities/64716

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-08-2017 - 01:33

Objavljeno

20-01-2011 - 19:00