Zurück zur CVE-Übersicht
CVE-2014-2206
CRITICAL(10.0)AV:N/AC:L/Au:N/C:C/I:C/A:C
Risk Signal Score48/100 — MITTEL
- CVSS 10 — Kritisch
- EPSS 77% — sehr wahrscheinlich ausgenutzt
EPSS-Score
77%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
10
Technische Schwere
Beschreibung
Stack-based buffer overflow in GetGo Download Manager 4.9.0.1982, 4.8.2.1346, 4.4.5.502, and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long HTTP Response Header.
Referenzen
- http://www.rcesecurity.com/2014/03/cve-2014-2206-getgo-download-manager-http-res...
- http://www.securityfocus.com/archive/1/531326/100/0/threaded
- http://www.securityfocus.com/bid/65913
- http://www.rcesecurity.com/2014/03/cve-2014-2206-getgo-download-manager-http-res...
- http://www.securityfocus.com/archive/1/531326/100/0/threaded
- http://www.securityfocus.com/bid/65913