Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Nsauditor 3.0.28.0 Local SEH Buffer Overflow
Vulnerability Description
Nsauditor 3.0.28.0 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying malicious input to the DNS Lookup tool. Attackers can craft a payload with SEH chain overwrite and inject shellcode through the DNS Query field to achieve code execution with application privileges.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Nsasoft Nsauditor 缓冲区错误漏洞
Vulnerability Description
Nsasoft Nsauditor是美国Nsasoft公司的一款网络安全软件。 Nsasoft Nsauditor 3.0.28.0版本存在缓冲区错误漏洞,该漏洞源于结构化异常处理存在缓冲区溢出,可能导致执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A