Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ObserverIP Scan Tool 1.4.0.1 Denial of Service via IP Field
Vulnerability Description
ObserverIP Scan Tool 1.4.0.1 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the IP input field. Attackers can paste a 2000-byte buffer of repeated characters into the IP field and trigger a search operation to cause an application crash.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
未经控制的内存分配
Vulnerability Title
Ambient ObserverIP Scan Tool 安全漏洞
Vulnerability Description
Ambient ObserverIP Scan Tool是美国Ambient公司的一款用于网络资产探测与端口扫描的安全检测工具。 Ambient ObserverIP Scan Tool 1.4.0.1版本存在安全漏洞,该漏洞源于可能导致本地攻击者通过提交超长字符串使应用程序崩溃。攻击者可以在IP输入字段中粘贴2000字节的重复字符缓冲区并触发搜索操作,导致应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A