Back to CVE List

CVE-2018-25345

HIGH SEVERITY

CVSS Score & Metrics

Base Score
8.4 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Description

10-Strike Network Scanner 3.0 contains a local buffer overflow vulnerability in the host name field that allows attackers to bypass SafeSEH protections and execute arbitrary code. Attackers can craft a malicious payload in the host name or address field and trigger the vulnerability through the Trace route or System information functions to achieve code execution.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-120
Source
NVD

External References

Discussion (0)

Add Comment

No comments yet. Be the first!