Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Nsauditor 3.2.1.0 - Buffer Overflow (SEH+ASLR bypass (3 bytes overwrite))
Vulnerability Description
Nsauditor 3.0.28 and 3.2.1.0 contains a buffer overflow vulnerability in the DNS Lookup tool that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious DNS query payload to trigger a three-byte overwrite, bypass ASLR, and execute shellcode through a carefully constructed exploit.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
Nsasoft Nsauditor 安全漏洞
Vulnerability Description
Nsasoft Nsauditor是美国Nsasoft公司的一款网络安全软件。 Nsasoft Nsauditor 3.0.28版本和3.2.1.0版本存在安全漏洞,该漏洞源于DNS Lookup工具存在缓冲区溢出,可能导致攻击者执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A