CVE-2012-6530

Sažetak

Stack-based buffer overflow in Sysax Multi Server before 5.52, when HTTP is enabled, allows remote authenticated users with the create folder permission to execute arbitrary code via a crafted request.

Reference

http://www.exploit-db.com/exploits/18382
http://www.exploit-db.com/exploits/18420
http://www.pwnag3.com/2012/01/sysax-multi-server-550-exploit.html
http://www.securityfocus.com/bid/51548

CVSS

Base:	7.1
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:H/Au:S/C:C/I:C/A:C

Zadnje važnije ažuriranje

31-01-2013 - 05:44

Objavljeno

31-01-2013 - 05:44