Microsys Promotic PmBase64Decode Buffer Overflow (CVE-2014-9205)

A stack-based buffer overflow vulnerability exists in Microsys's Promotic. The vulnerability is due to an insufficient boundary check on user-supplied data in the PmBase64Decode function. A remote, unauthenticated attacker can exploit this vulnerability by supplying a maliciously crafted base64...

CVE-2014-9205

Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data...

Stack overflow

Stack-based buffer overflow in the PmBase64Decode function in an unspecified demonstration application in MICROSYS PROMOTIC stable before 8.2.19 and PROMOTIC development before 8.3.2 allows remote attackers to execute arbitrary code by providing a large amount of data...

CVE-2014-9205

CVE-2014-9205 affects MICROSYS PROMOTIC: stack-based buffer overflow in the PmBase64Decode function in a demonstration application. Vulnerable in PROMOTIC stable prior to 8.2.19 and development prior to 8.3.2. Attackers can remotely execute arbitrary code by sending large data; ZDI assigns CVSSv2...

MICROSYS PROMOTIC Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of MICROSYS PROMOTIC. Authentication is not required to exploit this vulnerability. The program blindly copies attacker-supplied data into a fixed-sized buffer without validating the length of this da...