CVSS: 6.8EPSS: 17%CPEs: 6EXPL: 2CVE-2008-4729 – Hummingbird 13.0 - ActiveX Remote Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2008-4729
Stack-based buffer overflow in Hummingbird.XWebHostCtrl.1 ActiveX control (hclxweb.dll) in Hummingbird Xweb ActiveX Control 13.0 and earlier allows remote attackers to execute arbitrary code via a long PlainTextPassword property. NOTE: code execution might not be possible in 13.0. Desbordamiento de búfer basado en la pila en el control ActiveX de Hummingbird.XWebHostCtrl.1(hclxweb.dll) en Hummingbird Xweb ActiveX Control v13.0 y anteriores que permite a atacantes remotos ejecutar código de su elección a traves de la propiedad PlanTextPassword. NOTA: La ejecución de código podria no ser posible en la v13.0. • https://www.exploit-db.com/exploits/6761 http://secunia.com/advisories/32319 http://securityreason.com/securityalert/4505 http://www.securityfocus.com/bid/31783 https://exchange.xforce.ibmcloud.com/vulnerabilities/45941 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 2CVE-1999-1196
https://notcve.org/view.php?id=CVE-1999-1196
Hummingbird Exceed X version 5 allows remote attackers to cause a denial of service via malformed data to port 6000. • http://www.securityfocus.com/archive/1/13451 http://www.securityfocus.com/bid/158 •