Lucene search
Dave Weinstein of HP's Zero Day InitaitiveZDI-15-074HistoryFeb 27, 2015 - 12:00 a.m.
(0Day) WebGate WinRDS WESPPlayback.WESPPlaybackCtrl.1 SaveSiteImage Stack Buffer Overflow Remote Code Execution Vulnerability
2015-02-2700:00:00
Dave Weinstein of HP's Zero Day Initaitive
www.zerodayinitiative.com
13
0.897 High
EPSS
Percentile
98.8%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of WebGate WinRDS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WESPPlayback.WESPPlaybackCtrl.1 control. The SaveSiteImage method copies arbitrary data to a fixed-size stack buffer. This would allow an attacker to execute arbitrary code in the context of the browser.
Related
zdt
zdt
WebGate WinRDS 2.0.8 PlaySiteAllChannel Stack Buffer Overflow Exploit
2015-04-02 00:00:00
WebGate WinRDS 2.0.8 StopSiteAllChannel Stack Overflow Exploit
2015-03-27 00:00:00
checkpoint_advisories
checkpoint_advisories
prion
prion
Stack overflow
2015-03-09 14:59:00
cvelist
cvelist
CVE-2015-2094
2015-03-09 14:00:00
zdi
zdi
packetstorm
packetstorm
WebGate WinRDS 2.0.8 StopSiteAllChannel Stack Overflow
2015-03-27 00:00:00
nvd
nvd
CVE-2015-2094
2015-03-09 14:59:12
cve
cve
CVE-2015-2094
2015-03-09 14:59:12
nessus
nessus
WEBGATE ActiveX Controls Multiple Buffer Overflows
2015-03-09 00:00:00