Lucene search
MitreCVE-2015-4060HistoryMay 29, 2015 - 3:59 p.m.
CVE-2015-4060
2015-05-2915:59:21
CWE-119
mitre
web.nvd.nist.gov
29
cve-2015-4060
buffer overflow
termproxy
wavelink connectpro
nvd
security vulnerability
remote code execution
http header
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.3
Confidence
High
EPSS
0.914
Percentile
98.9%
Heap-based buffer overflow in the TermProxy (WLTermProxyService.exe) service in Wavelink ConnectPro allows remote attackers to execute arbitrary code via a large HTTP header.
Affected configurations
Node
wavelinkconnectproMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| wavelink | connectpro | - | cpe:2.3:a:wavelink:connectpro:-:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2015-4060
2015-05-29 15:59:21
zdi
zdi
prion
prion
Heap overflow
2015-05-29 15:59:00
cvelist
cvelist
CVE-2015-4060
2015-05-29 15:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.3
Confidence
High
EPSS
0.914
Percentile
98.9%
Related for CVE-2015-4060