DreamSecurity MagicLine Buffer Overflow Vulnerability

A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker could exploit this vulnerability by sending a crafted HTTP request an affected program. A successful exploit could allow the attacker to remotely execute arbitrary code on a target system.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

输入验证不恰当

Dream Security PKI安全漏洞

Dream Security PKI是韩国Dream Security公司的一个安全解决方案。 Dream Security PKI中存在安全漏洞，该漏洞源于。该漏洞是由于授权证书验证不足造成的。攻击者可利用该漏洞可以通过向受影响的程序发送精心设计的HTTP请求来利用这个漏洞。成功的攻击可以允许攻击者利用该漏洞远程执行目标系统上的任意代码。

N/A

N/A