4 matches found
CVE-2023-3935
CVE-2023-3935 describes a heap buffer overflow in the CodeMeter Runtime network service (Wibu Systems) up to version 7.60b, enabling an unauthenticated, remote attacker to achieve remote code execution and gain full host access. Connected sources confirm the vulnerability is tied to CodeMeter Run...
CVE-2021-41057
CVE-2021-41057 affects WIBU CodeMeter Runtime prior to 7.30a. A local attacker can abuse a crafted CmDongles symbolic link to overwrite the target file without permission checks, potentially crashing the CodeMeter Runtime Server and causing DoS. Public documentation confirms affected product is C...
CVE-2014-8419
CVE-2014-8419 affects CodeMeter Runtime prior to 5.20. The Windows service codemeter.exe is created with insecure Read/Write permissions for all users, enabling a local attacker to substitute the binary and gain SYSTEM privileges via a trojan-horse file. Several sources confirm the vulnerability ...
CVE-2011-4057
CVE-2011-4057 affects Wibu-Systems CodeMeter Runtime prior to v4.40 (notably 4.30c and 4.10b). A remote attacker can send crafted TCP packets to port 22350, causing CodeMeter.exe to crash and trigger a denial of service. Remediation: update to CodeMeter Runtime v4.40 or later. If details are not ...