Kentico Load XML Configuration Module Buffer Overflow Vulnerability

Kentico is the United States Kentico Software Corporation's set of ASP.NET-based content management system CMS. Kentico CMS Controls is used to edit and control a variety of elements in the web page . Load XML Configuration moudle is one of the XML upload configuration module . A stack buffer...

CVE-2018-5282

Kentico 9.0 through 11.0 has a stack-based buffer overflow via the SqlName, SqlPswd, Database, UserName, or Password field in a SilentInstall XML document. NOTE: the vendor disputes this issue because neither a buffer overflow nor a crash can be reproduced; also, reading XML documents is...

Stack overflow

DISPUTED Kentico 9.0 through 11.0 has a stack-based buffer overflow via the SqlName, SqlPswd, Database, UserName, or Password field in a SilentInstall XML document. NOTE: the vendor disputes this issue because neither a buffer overflow nor a crash can be reproduced; also, reading XML documents is...

CVE-2018-5282

Kentico 9.0 through 11.0 has a stack-based buffer overflow via the SqlName, SqlPswd, Database, UserName, or Password field in a SilentInstall XML document. NOTE: the vendor disputes this issue because neither a buffer overflow nor a crash can be reproduced; also, reading XML documents is...

PT-2018-16863

Name of the Vulnerable Software and Affected Versions Kentico versions 9.0 through 11.0 Description The issue is related to a stack-based buffer overflow that can occur via the SqlName, SqlPswd, Database, UserName, or Password field in a SilentInstall XML document. However, the vendor disputes th...