Security Advisory

CVE-2020-7837

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-16 16:09:34

Last updated 2024-09-17 03:08:26

Assigner krcert

State PUBLISHED

Description

An issue was discovered in ML Report Program. There is a stack-based buffer overflow in function sub_41EAF0 at MLReportDeamon.exe. The function will call vsprintf without checking the length of strings in parameters given by attacker. And it finally leads to a stack-based buffer overflow via access to crafted web page. This issue affects: Infraware ML Report 2.19.312.0000.

← Browse all CVEs View on cve.org ↗