Lucene search
PRIOn knowledge basePRION:CVE-2017-12785HistoryAug 22, 2017 - 5:29 p.m.
Command injection
2017-08-2217:29:00
PRIOn knowledge base
www.prio-n.com
3
The novish command-line interface, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, is prone to a buffer overflow in the “show log cli” command. This could be used by a read-only user (monitor role) to gain privileged (root) code execution on the switch via command injection.
References
Related
nvd
nvd
CVE-2017-12785
2017-08-22 17:29:00
cve
cve
CVE-2017-12785
2017-08-22 17:29:00
cvelist
cvelist
CVE-2017-12785
2017-08-22 17:00:00
packetstorm
packetstorm
NoviFlow NoviWare NW400.2.6 Code Execution
2017-08-18 00:00:00
zdt
zdt
NoviFlow NoviWare <= NW400.2.6 - Multiple Vulnerabilities
2017-08-19 00:00:00
exploitpack
exploitpack
NoviFlow NoviWare NW400.2.6 - Multiple Vulnerabilities
2017-08-18 00:00:00
exploitdb
exploitdb
NoviFlow NoviWare < NW400.2.6 - Multiple Vulnerabilities
2017-08-18 00:00:00