CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
92.8%
Buffer overflow in Talentsoft Web+ 5.0 and earlier allows remote attackers to execute arbitrary code via a long Web Markup Language (wml) file name to (1) webplus.dll or (2) webplus.exe.
Vendor | Product | Version | CPE |
---|---|---|---|
talentsoft | web\+_server | 4.6 | cpe:2.3:a:talentsoft:web\+_server:4.6:*:*:*:*:*:*:* |
talentsoft | web\+_server | 5.0 | cpe:2.3:a:talentsoft:web\+_server:5.0:*:*:*:*:*:*:* |