Lucene search

[email protected]CVE-2011-0517

HistoryJan 20, 2011 - 7:00 p.m.

CVE-2011-0517

2011-01-2019:00:12

CWE-119

[email protected]

web.nvd.nist.gov

112

cve-2011-0517

sielco sistemi

winlog pro

buffer overflow

tcp/ip

remote code execution

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.963 High

EPSS

Percentile

99.6%

JSON

Stack-based buffer overflow in Sielco Sistemi Winlog Pro 2.07.00 and earlier, when Run TCP/IP server is enabled, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted 0x02 opcode to TCP port 46823.

Affected configurations

NVD

Node

sielcosistemiwinlog_proRange≤2.07.00

CPENameOperatorVersion
sielcosistemi:winlog_prosielcosistemi winlog prole2.07.00

CPE	Name	Operator	Version
sielcosistemi:winlog_pro	sielcosistemi winlog pro	le	2.07.00

References

aluigi.org/adv/winlog_1-adv.txt

osvdb.org/70418

secunia.com/advisories/42894

securityreason.com/securityalert/8280

www.exploit-db.com/exploits/15992

www.kb.cert.org/vuls/id/496040

www.securityfocus.com/bid/45813

www.us-cert.gov/control_systems/pdf/ICSA-11-017-02.pdf

www.vupen.com/english/advisories/2011/0126

exchange.xforce.ibmcloud.com/vulnerabilities/64716

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

High

0.963 High

EPSS

Percentile

99.6%

JSON

Related for CVE-2011-0517

packetstorm1 cert1 cvelist1 checkpoint_advisories1 prion1 nvd1