Lucene search

[email protected]CVE-2014-3913

HistoryJun 04, 2014 - 2:55 p.m.

CVE-2014-3913

2014-06-0414:55:05

CWE-119

[email protected]

web.nvd.nist.gov

cve-2014-3913

buffer overflow

accessserver32.exe

ericom accessnow server

remote code execution

nvd

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.895 High

EPSS

Percentile

98.8%

JSON

Stack-based buffer overflow in AccessServer32.exe in Ericom AccessNow Server allows remote attackers to execute arbitrary code via a request for a non-existent file.

Affected configurations

NVD

Node

ericomaccessnow_serverMatch-

CPENameOperatorVersion
ericom:accessnow_serverericom accessnow servereq-

CPE	Name	Operator	Version
ericom:accessnow_server	ericom accessnow server	eq	-

References

packetstormsecurity.com/files/127152/Ericom-AccessNow-Server-Buffer-Overflow.html

www.ericom.com/security-ERM-2014-610.asp

www.exploit-db.com/exploits/33817

www.securityfocus.com/bid/67777

www.zerodayinitiative.com/advisories/ZDI-14-160

8.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.895 High

EPSS

Percentile

98.8%

JSON

Related for CVE-2014-3913

packetstorm1 nvd1 prion1 zdi1 nessus1 cvelist1 checkpoint_advisories1 zdt1 kaspersky1