Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
NetAware 1.20 Denial of Service via Add Block Buffer Overflow
Vulnerability Description
NetAware 1.20 contains a buffer overflow vulnerability in the User Blocking feature that allows local attackers to crash the application by supplying oversized input. Attackers can paste a malicious buffer of 512 bytes into the 'Add a website or keyword to be filtered' field and trigger a crash when removing the created block.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
Infiltration Systems NetAware 缓冲区错误漏洞
Vulnerability Description
Infiltration Systems NetAware是Infiltration Systems公司的一款用于监控计算机网络活动与应用使用情况的网络管理工具。 Infiltration Systems NetAware 1.20版本存在缓冲区错误漏洞,该漏洞源于用户阻止功能存在缓冲区溢出,可能导致本地攻击者通过在被过滤网站或关键词字段输入过大输入使应用程序崩溃。
CVSS Information
N/A
Vulnerability Type
N/A