Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsr_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner Inc IAC-AST2500A standard firmware version 1.10.0.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HLannerinc Iac Ast2500a
HWLannerincwszystkie wersjeLannerinc Iac Ast2500a Firmware
OSLannerinc1.10.0
Powiązane podatności
Multiple command injections and stack-based buffer overflows vulnerabilities in the SubNet_handler_func functi...
A stack-based buffer overflow vulnerability in a subfunction of the Login_handler_func function of spx_restser...
Command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb_func function o...
Command injection and multiple stack-based buffer overflows vulnerabilities in the Login_handler_func function...
A broken access control vulnerability in the First_network_func function of spx_restservice allows an attacker...