Lucene search
HistoryMay 26, 2015 - 3:59 p.m.
CVE-2015-0986
cve-2015-0986
buffer overflow
moxa vport
activex
sdk
security vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.9 Medium
AI Score
Confidence
Low
0.295 Low
EPSS
Percentile
96.9%
Multiple stack-based buffer overflows in Moxa VPort ActiveX SDK Plus before 2.8 allow remote attackers to insert assembly-code lines via vectors involving a regkey (1) set or (2) get command.
Affected configurations
Node
moxavport_activex_sdk_plusRange≤2.7
| CPE | Name | Operator | Version |
|---|---|---|---|
| moxa:vport_activex_sdk_plus | moxa vport activex sdk plus | le | 2.7 |
Related
ics
ics
Moxa VPort ActiveX SDK Plus Stack-Based Buffer Overflow Vulnerability
2018-08-27 12:00:00
cvelist
cvelist
CVE-2015-0986
2015-05-26 15:00:00
nvd
nvd
CVE-2015-0986
2015-05-26 15:59:00
zdi
zdi
prion
prion
Stack overflow
2015-05-26 15:59:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.9 Medium
AI Score
Confidence
Low
0.295 Low
EPSS
Percentile
96.9%
Related for CVE-2015-0986