CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 0CVE-2015-6458 – Moxa SoftCMS RTSPVIDEO.rtspvideoCtrl.1 AudioRecord Method ip Argument Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-6458
Moxa SoftCMS 1.3 and prior is susceptible to a buffer overflow condition that may crash or allow remote code execution. Moxa released SoftCMS version 1.4 on June 1, 2015, to address the vulnerability. Moxa SoftCMS, en versiones 1.3 y anteriores, es susceptible a una condición de desbordamiento de búfer que podría cerrarse inesperadamente o permitir la ejecución remota de código. Moxa lanzó la versión 1.4 de SoftCMS el 1 de junio de 2015 para abordar esta vulnerabilidad. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Moxa SoftCMS. • https://ics-cert.us-cert.gov/advisories/ICSA-15-239-01 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 11%CPEs: 1EXPL: 0CVE-2015-1000 – Moxa VPort ActiveX SDK PLUS GetClientReg Model Parameter Stack Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-1000
Stack-based buffer overflow in the OpenForIPCamTest method in the RTSPVIDEO.rtspvideoCtrl.1 (aka SStreamVideo) ActiveX control in Moxa SoftCMS before 1.3 allows remote attackers to execute arbitrary code via the StrRtspPath parameter. Desbordamiento de buffer basado en pila en el método OpenForIPCamTest en el control de ActiveX de RTSPVIDEO.rtspvideoCtrl.1 (también conocido como SStreamVideo) en Moxa SoftCMS anterior a 1.3 permite a atacantes remotos ejecutar código arbitrario a través del parámetro StrRtspPath. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of VPort ActiveX SDK PLUS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the VPORTSDK.VPortSDKCtrl.1 ActiveX control. By passing an overly long string to the GetClientReg method's Model parameter, an attacker can overflow a buffer on the stack. • http://www.securityfocus.com/bid/74966 http://zerodayinitiative.com/advisories/ZDI-15-120 https://ics-cert.us-cert.gov/advisories/ICSA-15-153-02 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •