3 matches found
CVE-2019-5143
An exploitable format string vulnerability exists in the iwconsole coniowritestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can send commands whil...
Moxa AWK-3131A Series Industrial AP/Bridge/Client Buffer Copy Without Checking Size of Input (CVE-2019-5143)
An exploitable format string vulnerability exists in the iwconsole coniowritestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted time server entry can cause an overflow of the time server buffer, resulting in remote code execution. An attacker can send commands whil...
CVE-2019-5143
The CVE-2019-5143 issue affects Moxa AWK-3131A firmware v1.13. It is a classic buffer overflow (CWE-120) in iw_console conio_writestr that occurs when a time-server entry is crafted; this can overflow the time server buffer and enable remote code execution. Exploitation requires authentication as...