Lucene search
SAINT CorporationSAINT:8A2F7FA2A420D456BC5107908CA7BA9CHistoryMar 16, 2017 - 12:00 a.m.
Disk Savvy Enterprise long URI in GET request buffer overflow
2017-03-1600:00:00
SAINT Corporation
download.saintcorporation.com
23
EPSS
0.469
Percentile
97.5%
Added: 03/16/2017
CVE: CVE-2017-6187
BID: 96401
Background
Disk Savvy Enterprise is a disk space usage analyzer.
Problem
A buffer overflow in the built-in web server in Disk Savvy Enterprise could allow remote code execution when handling a long URI in a GET request.
Resolution
Contact the vendor for a patch or fixed version when available.
References
<https://www.exploit-db.com/exploits/41436/>
Limitations
The Disk Savvy Enterprise web server is disabled by default.
Exploit works on Disk Savvy Enterprise 9.4.18 on Windows 7 Professional SP1 x64 and Windows 10 Professional x64.
Platforms
Windows 7
Windows 10
Related
cve
cve
CVE-2017-6187
2017-02-22 23:59:00
metasploit
metasploit
DiskSavvy Enterprise GET Buffer Overflow
2017-01-19 19:34:00
nvd
nvd
CVE-2017-6187
2017-02-22 23:59:00
packetstorm
packetstorm
Disk Savvy Enterprise 9.4.18 Buffer Overflow
2017-02-22 00:00:00
openvas
openvas
Disk Savvy Enterprise Server Buffer Overflow Vulnerability
2016-12-02 00:00:00
saint
saint
Disk Savvy Enterprise long URI in GET request buffer overflow
2017-03-16 00:00:00
Disk Savvy Enterprise long URI in GET request buffer overflow
2017-03-16 00:00:00
exploitdb
exploitdb
Disk Savvy Enterprise 9.4.18 - Remote Buffer Overflow (SEH)
2017-02-22 00:00:00
prion
prion
Buffer overflow
2017-02-22 23:59:00
cvelist
cvelist
CVE-2017-6187
2017-02-22 23:00:00
zdt
zdt
Disk Savvy Enterprise 9.4.18 - Buffer Overflow (SEH) Exploit
2017-02-22 00:00:00