Vulnerability CVE-2012-6275
Published: 2013-02-24

Description:
Multiple stack-based buffer overflows in AntDS.exe in BigAntSoft BigAnt IM Message Server allow remote attackers to have an unspecified impact via (1) the filename header in an SCH request or (2) the userid component in a DUPF request.

See advisories in our WLB2 database:
Topic
Author
Date
High
BigAnt Server 2 SCH And DUPF Buffer Overflow
Juan vazquez
20.02.2013

Type:

CWE-119

 (Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Bigantsoft -> Bigant im message server 

 References:
http://www.kb.cert.org/vuls/id/990652
Copyright 2024, cxsecurity.com

 

Back to Top