메뉴 건너뛰기

검색창 닫기

GREATUSER

cve

CVE-2017-12787

관리자 2017.08.27 07:00 조회 수 : 77

A network interface of the novi_process_manager_daemon service, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an operator attempts to modify ACLs, because of a bug when ACL modifications are applied. This could be leveraged by remote, unauthenticated attackers to gain resultant privileged (root) code execution on the switch, because incoming packet data can contain embedded OS commands, and can also trigger a stack-based buffer overflow.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12787
이 게시물을
이 글의 추천인 목록 게시글 수정 내역 목록
번호 제목 글쓴이 날짜 조회 수
392 CVE-2017-0112 관리자 2017.03.18 184
391 CVE-2016-0028 관리자 2016.06.17 184
390 CVE-2018-1000012 관리자 2018.01.25 183
389 CVE-2018-5761 관리자 2018.01.25 183
388 CVE-2017-16659 관리자 2017.11.09 183
387 CVE-2017-2911 관리자 2017.11.09 183
386 CVE-2017-14029 관리자 2017.11.09 183
385 CVE-2015-7529 관리자 2017.11.09 183
384 CVE-2017-0030 관리자 2017.03.18 183
383 CVE-2017-0018 관리자 2017.03.18 183
382 CVE-2015-6409 (jabber) 관리자 2015.12.31 183
381 CVE-2017-0007 관리자 2017.03.18 182
380 CVE-2017-6331 관리자 2017.11.09 181
379 CVE-2017-14100 관리자 2017.09.04 181
378 CVE-2017-11424 관리자 2017.08.27 181
쓰기 태그
위로