CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
86.8%
Buffer overflow in NetSupport Manager (NSM) Client 10.00 and 10.20, and NetSupport School Student (NSS) 9.00, allows remote NSM servers to cause a denial of service or possibly execute arbitrary code via crafted data in the configuration exchange phase of an initial connection setup. NOTE: a vendor statement, which is too vague to be sure that it is for this particular issue, says that only a denial of service is possible.
Vendor | Product | Version | CPE |
---|---|---|---|
netsupport | netsupport_manager_client | 10.00 | cpe:2.3:a:netsupport:netsupport_manager_client:10.00:*:*:*:*:*:*:* |
netsupport | netsupport_manager_client | 10.20 | cpe:2.3:a:netsupport:netsupport_manager_client:10.20:*:*:*:*:*:*:* |
netsupport | netsupport_school_student | 9.00 | cpe:2.3:a:netsupport:netsupport_school_student:9.00:*:*:*:*:*:*:* |