Lucene search
HistoryMar 09, 2015 - 2:59 p.m.
CVE-2015-2096
cve-2015-2096
webgate edvr manager
activex control
vulnerability
connect function
wespmonitorctrl.1
remote code execution
nvd
8.9 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.228 Low
EPSS
Percentile
96.5%
Use-after-free vulnerability in the Connect function in the WESPMonitor.WESPMonitorCtrl.1 ActiveX control in WebGate eDVR Manager allows remote attackers to execute arbitrary code via an invalid IP address and a page reload.
Affected configurations
Node
webgateincedvr_managerMatch2.6.4
| CPE | Name | Operator | Version |
|---|---|---|---|
| webgateinc:edvr_manager | webgateinc edvr manager | eq | 2.6.4 |
Related
prion
prion
Design/Logic Flaw
2015-03-09 14:59:00
zdi
zdi
cvelist
cvelist
CVE-2015-2096
2015-03-09 14:00:00
nvd
nvd
CVE-2015-2096
2015-03-09 14:59:14
nessus
nessus
WEBGATE ActiveX Controls Multiple Buffer Overflows
2015-03-09 00:00:00
8.9 High
AI Score
Confidence
High
6.8 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.228 Low
EPSS
Percentile
96.5%
Related for CVE-2015-2096