Vulnerability Details CVE-2015-2099
Multiple buffer overflows in WebGate Control Center allow remote attackers to execute arbitrary code via unspecified vectors to the (1) GetRecFileInfo function in the FileConverter.FileConverterCtrl.1 control, (2) Login function in the LoginContoller.LoginControllerCtrl.1 control, or (3) GetThumbnail function in the WESPPlayback.WESPPlaybackCtrl.1 control.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.201
EPSS Ranking 95.2%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- http://www.zerodayinitiative.com/advisories/ZDI-15-055/
- http://www.zerodayinitiative.com/advisories/ZDI-15-056/
- http://www.zerodayinitiative.com/advisories/ZDI-15-063/
- http://www.zerodayinitiative.com/advisories/ZDI-15-055/
- http://www.zerodayinitiative.com/advisories/ZDI-15-056/
- http://www.zerodayinitiative.com/advisories/ZDI-15-063/
Products affected by CVE-2015-2099
-
cpe:2.3:a:webgateinc:control_center:-