4 matches found
CVE-2019-16110
The network protocol of Blade Shadow though 2.13.3 allows remote attackers to take control of a Shadow instance and execute arbitrary code by only knowing the victim's IP address, because packet data can be injected into the unencrypted UDP packet stream...
Code injection
The network protocol of Blade Shadow though 2.13.3 allows remote attackers to take control of a Shadow instance and execute arbitrary code by only knowing the victim's IP address, because packet data can be injected into the unencrypted UDP packet stream...
CVE-2019-16110
The network protocol of Blade Shadow though 2.13.3 allows remote attackers to take control of a Shadow instance and execute arbitrary code by only knowing the victim's IP address, because packet data can be injected into the unencrypted UDP packet stream...
CVE-2019-16110
Blade Shadow up to version 2.13.3 is vulnerable to remote code execution via the network protocol: an attacker who knows the victim’s IP can inject data into the unencrypted UDP stream, potentially taking control of a Shadow instance. Root cause: unprotected UDP packet handling allows arbitrary c...