Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2094

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2015-2094
Last Modified 01 Sep 2015 02:21:43
Published 09 Mar 2015 10:59:12
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-2094

Summary

Stack-based buffer overflow in the WESPPlayback.WESPPlaybackCtrl.1 control in WebGate WinRDS allows remote attackers to execute arbitrary code via unspecified vectors to the (1) PrintSiteImage, (2) PlaySiteAllChannel, (3) StopSiteAllChannel, or (4) SaveSiteImage function.

Vulnerable Systems

Application

  • Webgateinc Winrds


References

MISC - http://www.zerodayinitiative.com/advisories/ZDI-15-074/

MISC - http://www.zerodayinitiative.com/advisories/ZDI-15-073/

MISC - http://www.zerodayinitiative.com/advisories/ZDI-15-072/

MISC - http://www.zerodayinitiative.com/advisories/ZDI-15-071/

MISC - http://packetstormsecurity.com/files/131069/WebGate-WinRDS-2.0.8-StopSiteAllChannel-Stack-Overflow.html

OSVDB - 118908

OSVDB - 118907

OSVDB - 118906

OSVDB - 118905


Last Updated: 27 May 2016 11:08:40