Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0449

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2002-0449
Last Modified 05 Sep 2008 04:28:03
Published 26 Jul 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0449

Summary

Buffer overflow in webpsvc.exe for Talentsoft Web+ 5.0 and earlier allows remote attackers execute arbitrary code via a long argument to webplus.exe program, which triggers the overflow in webpsvc.exe.

Vulnerable Systems

Application

  • Talentsoft Web%2b Server 4.6

  • Talentsoft Web%2b Server 5.0


References

CERT-VN - VU#159907

BID - 4233

XF - webplus-webpsvc-bo(8361)

CONFIRM - http://www.talentsoft.com/Issues/IssueDetail.wml?ID=WP943

BUGTRAQ - 20020305 Buffer Overrun in Talentsoft's Web+ (#NISR01032002A)


Last Updated: 27 May 2016 10:36:54