Lucene search
HistoryJul 18, 2015 - 10:59 a.m.
CVE-2015-0795
cve-2015-0795
stack-based buffer overflows
safeshellexecute method
netiqexecobject
netiq security solutions
iseries 8.1
remote code execution
zdi-can-2699
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.1 High
AI Score
Confidence
Low
0.939 High
EPSS
Percentile
99.2%
Multiple stack-based buffer overflows in the SafeShellExecute method in the NetIQExecObject.NetIQExec.1 ActiveX control in NetIQExec.dll in NetIQ Security Solutions for iSeries 8.1 allow remote attackers to execute arbitrary code via long arguments, aka ZDI-CAN-2699.
Affected configurations
Node
microfocussecurity_solutions_for_iseriesMatch8.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| microfocus:security_solutions_for_iseries | microfocus security solutions for iseries | eq | 8.1 |
Related
checkpoint_advisories
checkpoint_advisories
prion
prion
Stack overflow
2015-07-18 10:59:00
zdi
zdi
cvelist
cvelist
CVE-2015-0795
2015-07-18 10:00:00
nvd
nvd
CVE-2015-0795
2015-07-18 10:59:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.1 High
AI Score
Confidence
Low
0.939 High
EPSS
Percentile
99.2%
Related for CVE-2015-0795