header-logo
Suggest Exploit
vendor:
invscout
by:
SecurityFocus
9.3
CVSS
HIGH
Local Buffer Overflow
119
CWE
Product Name: invscout
Affected Version From: All versions prior to invscout 1.2.1
Affected Version To: All versions prior to invscout 1.2.1
Patch Exists: YES
Related CWE: CVE-2003-0252
CPE: o:invscout:invscout
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2003

invscout Local Buffer Overflow Vulnerability

invscout is prone to a local buffer overflow vulnerability due to the application failing to carry out boundary checks on user-supplied data from the command line. An attacker can exploit this vulnerability by supplying a maliciously crafted string of 1024 characters or more to the application via the command line.

Mitigation:

Upgrade to the latest version of invscout.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/13909/info

invscout is prone to a local buffer overflow vulnerability. This issue presents itself because the application fails to carry out boundary checks on user-supplied data from the command line. 

/usr/sbin/invscout `perl -e 'print "A" x 1024;'`

Navigation

Suggest Exploit

Services By CQR