CVE-2014-2994

Name of the Vulnerable Software and Affected Versions Acunetix Web Vulnerability Scanner (WVS) version 8 build 20120704

Description The issue is a stack-based buffer overflow that allows remote attackers to execute arbitrary code. This can be achieved by using an HTML file that contains an IMG element with a long URL in the src attribute.

Recommendations For Acunetix Web Vulnerability Scanner (WVS) version 8 build 20120704, consider avoiding the use of long URLs in the src attribute of IMG elements in HTML files until a patch is available. As a temporary workaround, restrict the processing of HTML files with long URLs in the src attribute to minimize the risk of exploitation.