Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2015-2097
HistoryMar 09, 2015 - 2:59 p.m.

CVE-2015-2097

2015-03-0914:59:15
CWE-119
mitre
web.nvd.nist.gov
39
cve-2015-2097
webgate embedded standard protocol
wesp sdk
buffer overflows
remote code execution
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.8

Confidence

High

EPSS

0.948

Percentile

99.3%

JSON

Multiple buffer overflows in WebGate Embedded Standard Protocol (WESP) SDK allow remote attackers to execute arbitrary code via unspecified vectors to the (1) LoadImage or (2) LoadImageEx function in the WESPMonitor.WESPMonitorCtrl.1 control, (3) ChangePassword function in the WESPCONFIGLib.UserItem control, Connect function in the (4) WESPSerialPort.WESPSerialPortCtrl.1 or (5) WESPPLAYBACKLib.WESPPlaybackCtrl control, or (6) AddID function in the WESPCONFIGLib.IDList control or a (7) long string to the second argument to the ConnectEx3 function in the WESPPLAYBACKLib.WESPPlaybackCtrl control.

Affected configurations

Nvd
Node
webgatewebgate_embedded_standard_protocol_sdkMatch-
VendorProductVersionCPE
webgatewebgate_embedded_standard_protocol_sdk-cpe:2.3:a:webgate:webgate_embedded_standard_protocol_sdk:-:*:*:*:*:*:*:*

Related

cvelist 1
zdt 2
exploitdb 3
nvd 1
zdi 3
packetstorm 1
checkpoint_advisories 2
prion 1
nessus 1
cvelist
cvelist
CVE-2015-2097
2015-03-09 14:00:00
zdt
zdt
WebGate eDVR Manager 2.6.4 Connect Method Stack Buffer Overflow Exploit
2015-04-02 00:00:00
WebGate eDVR Manager Stack Buffer Overflow Exploit
2015-03-27 00:00:00
exploitdb
exploitdb
WebGate WESP SDK 1.2 - ChangePassword Stack Overflow
2015-04-02 00:00:00
WebGate eDVR Manager 2.6.4 - Connect Method Stack Buffer Overflow
2015-04-02 00:00:00
WebGate eDVR Manager - Remote Stack Buffer Overflow
2015-03-26 00:00:00
nvd
nvd
CVE-2015-2097
2015-03-09 14:59:15
zdi
zdi
(0Day) WebGate eDVR Manager WESPSerialPort.WESPSerialPortCtrl.1 Connect Method Stack Buffer Overflow Remote Code Execution Vulnerability
2015-02-27 00:00:00
(0Day) WebGate eDVR Manager WESPMonitor.WESPMonitorCtrl.1 LoadImage Stack Buffer Overflow Remote Code Execution Vulnerability
2015-02-27 00:00:00
(0Day) WebGate eDVR Manager WESPMonitor.WESPMonitorCtrl.1 LoadImageEx Stack Buffer Overflow Remote Code Execution Vulnerability
2015-02-27 00:00:00
packetstorm
packetstorm
WebGate eDVR Manager Stack Buffer Overflow
2015-03-27 00:00:00
checkpoint_advisories
checkpoint_advisories
WebGate Multiple Products WESPSerialPortCtrl Buffer Overflow (CVE-2015-2097)
2015-07-09 00:00:00
WebGate Multiple Products WESPMonitor Stack Buffer Overflow (CVE-2015-2097)
2015-04-07 00:00:00
prion
prion
Buffer overflow
2015-03-09 14:59:00
nessus
nessus
WEBGATE ActiveX Controls Multiple Buffer Overflows
2015-03-09 00:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.8

Confidence

High

EPSS

0.948

Percentile

99.3%

JSON
Related for CVE-2015-2097
cvelist1zdt2exploitdb3nvd1zdi3packetstorm1checkpoint_advisories2prion1nessus1