RSS   Vulnerabilities for 'V-server'   RSS

2019-11-13
 
CVE-2019-18240

CWE-787
 

 
In Fuji Electric V-Server 4.0.6 and prior, several heap-based buffer overflows have been identified, which may allow an attacker to remotely execute arbitrary code.

 
2019-06-12
 
CVE-2019-3947

CWE-255
 

 
Fuji Electric V-Server before 6.0.33.0 stores database credentials in project files as plaintext. An attacker that can gain access to the project file can recover the database credentials and gain access to the database server.

 
 
CVE-2019-3946

CWE-190
 

 
Fuji Electric V-Server before 6.0.33.0 is vulnerable to denial of service via a crafted UDP message sent to port 8005. An unauthenticated, remote attacker can crash vserver.exe due to an integer overflow in the UDP message handling logic.

 
2018-09-13
 
CVE-2018-10637

CWE-119
 

 
A maliciously crafted project file may cause a buffer overflow, which may allow the attacker to execute arbitrary code that affects Fuji Electric V-Server Lite 4.0.3.0 and prior.

 
2017-07-17
 
CVE-2017-9639

CWE-119
 

 
An issue was discovered in Fuji Electric V-Server Version 3.3.22.0 and prior. A memory corruption vulnerability has been identified (aka improper restriction of operations within the bounds of a memory buffer), which may allow remote code execution.

 

 >>> Vendor: Fujielectric 9 Products
V-server
Monitouch v-sft
V-server vpr firmware
V-server firmware
Alpha5 smart loader firmware
Frenic loader 3.3 firmware
Energy savings estimator
Alpha7 pc loader firmware
Frenic loader


Copyright 2019, cxsecurity.com

 

Back to Top