Ri0T

**Name of the Vulnerable Software and Affected Versions** eIQNetworks Enterprise Security Analyzer (ESA) version 2.5 **Description** The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This is achieved by sending certain data on TCP port 10616, which results in a long argument to the `SEARCHREPORT` command. **Recommendations** For version 2.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.