메뉴 건너뛰기

검색창 닫기

GREATUSER

cve

CVE-2017-12787

관리자 2017.08.27 07:00 조회 수 : 77

A network interface of the novi_process_manager_daemon service, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an operator attempts to modify ACLs, because of a bug when ACL modifications are applied. This could be leveraged by remote, unauthenticated attackers to gain resultant privileged (root) code execution on the switch, because incoming packet data can contain embedded OS commands, and can also trigger a stack-based buffer overflow.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-12787
이 게시물을
이 글의 추천인 목록 게시글 수정 내역 목록
번호 제목 글쓴이 날짜 조회 수
377 CVE-2017-0020 관리자 2017.03.18 181
376 CVE-2017-0015 관리자 2017.03.18 181
375 CVE-2016-3212 관리자 2016.06.17 181
374 CVE-2017-12112 관리자 2018.01.25 180
373 CVE-2017-14099 관리자 2017.09.04 180
372 CVE-2014-7860 관리자 2017.08.27 180
371 CVE-2017-0117 관리자 2017.03.18 180
370 CVE-2017-0082 관리자 2017.03.18 180
369 CVE-2016-3214 관리자 2016.06.17 180
368 CVE-2018-1044 관리자 2018.01.25 179
367 CVE-2017-12130 관리자 2018.01.25 179
366 CVE-2017-14460 관리자 2018.01.25 179
365 CVE-2017-13693 관리자 2017.08.27 179
364 CVE-2017-0127 관리자 2017.03.18 179
363 CVE-2017-15091 관리자 2018.01.25 178
쓰기 태그
위로