CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2017-14010
https://notcve.org/view.php?id=CVE-2017-14010
26 Apr 2018 — In SpiderControl MicroBrowser Windows XP, Vista 7, 8 and 10, Versions 1.6.30.144 and prior, an uncontrolled search path element vulnerability has been identified which could be exploited by placing a specially crafted DLL file in the search path. If the malicious DLL is loaded prior to the valid DLL, an attacker could execute arbitrary code on the system. En SpiderControl MicroBrowser en Windows XP, Vista 7, 8 y 10, en sus versiones 1.6.30.144 y anteriores, se ha identificado una vulnerabilidad no controlad... • http://spidercontrol.net/download/downloadarea/?lang=en • CWE-427: Uncontrolled Search Path Element •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12707 – SpiderControl SCADA MicroBrowser StaticHTMLTagsFileName Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-12707
23 Aug 2017 — A Stack-based Buffer Overflow issue was discovered in SpiderControl SCADA MicroBrowser Versions 1.6.30.144 and prior. Opening a maliciously crafted html file may cause a stack overflow. Se ha descubierto un problema de desbordamiento de búfer basado en pila en SpiderControl SCADA MicroBrowser en su versión 1.6.30.144 y anteriores. Abrir un archivo html manipulado maliciosamente podría provocar un desbordamiento de la pila. This vulnerability allows remote attackers to execute arbitrary code on vulnerable in... • http://www.securityfocus.com/bid/100453 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-121: Stack-based Buffer Overflow •