Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple stack-based buffer overflows in the DIVA web service API (/webservice) in VDG Security SENSE (formerly DIVA) 2.3.13 allow remote attackers to execute arbitrary code via the (1) user or (2) password parameter in an AuthenticateUser request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
VDG Security SENSE 基于栈的缓冲区溢出漏洞
Vulnerability Description
VDG Security SENSE(前称DIVA)是荷兰VDG Security公司的一套视频管理系统(VMS)。该系统提供了一个友好的用户界面用于控制所有的实时图像和存储的视频数据。 VDG Security SENSE 2.3.13版本的DIVA web service API(/webservice)中存在基于栈的缓冲区溢出漏洞。远程攻击者可借助AuthenticateUser请求中的‘user’或‘password’参数利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A