← Volver a CVEs

CVE-2015-2099

HIGH

8.8

Descripcion

Multiple buffer overflows in WebGate Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the (1) GetRecFileInfo function in the FileConverter.FileConverterCtrl.1 control, (2) Login function in the LoginContoller.LoginControllerCtrl.1 control, or (3) GetThumbnail function in the WESPPlayback.WESPPlaybackCtrl.1 control.

Detalles CVE

Puntuacion CVSS v3.18.8

SeveridadHIGH

Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vector de ataqueNETWORK

ComplejidadLOW

Privilegios requeridosNONE

Interaccion usuarioREQUIRED

Publicado7/22/2021

Ultima modificacion11/21/2024

Fuentenvd

Avistamientos honeypot0

Productos afectados

webgateinc:control_center

Debilidades (CWE)

CWE-120

Referencias

http://www.zerodayinitiative.com/advisories/ZDI-15-055/(cve@mitre.org)

http://www.zerodayinitiative.com/advisories/ZDI-15-056/(cve@mitre.org)

http://www.zerodayinitiative.com/advisories/ZDI-15-063/(cve@mitre.org)

http://www.zerodayinitiative.com/advisories/ZDI-15-055/(af854a3a-2127-422b-91ae-364da2661108)

http://www.zerodayinitiative.com/advisories/ZDI-15-056/(af854a3a-2127-422b-91ae-364da2661108)

http://www.zerodayinitiative.com/advisories/ZDI-15-063/(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.