Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-14311 | 1 Netmechanica | 1 Netdecision | 2019-10-02 | 4.6 MEDIUM | 7.8 HIGH |
The Winring0x32.sys driver in NetMechanica NetDecision 5.8.2 allows local users to gain privileges via a crafted 0x9C402088 IOCTL call. | |||||
CVE-2012-1464 | 1 Netmechanica | 1 Netdecision | 2017-12-05 | 5.0 MEDIUM | N/A |
Dashboard Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the installation path via a request with a trailing "?" character, which causes Dashboard to attempt to access a non-existent resource. NOTE: some of these details are obtained from third party information. | |||||
CVE-2012-1465 | 1 Netmechanica | 1 Netdecision | 2017-08-28 | 4.3 MEDIUM | N/A |
Stack-based buffer overflow in the HTTP Server in NetMechanica NetDecision before 4.6.1 allows remote attackers to cause a denial of service (application crash) via a long URL in an HTTP request. NOTE: some of these details are obtained from third party information. | |||||
CVE-2012-1466 | 1 Netmechanica | 1 Netdecision | 2017-08-28 | 5.0 MEDIUM | N/A |
The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from third party information. |