PT-2015-5606 · Webgate · Webgate Control Center

Rgod

Published

2015-02-27

Updated

2021-08-03

CVE-2015-2099

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions WebGate Control Center (affected versions not specified)

Description The issue concerns multiple buffer overflows in the WebGate Control Center, allowing remote attackers to execute arbitrary code. This can be achieved through various vectors, including the GetRecFileInfo function in the FileConverter.FileConverterCtrl.1 control, the Login function in the LoginContoller.LoginControllerCtrl.1 control, and the GetThumbnail function in the WESPPlayback.WESPPlaybackCtrl.1 control.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2015-2099

ZDI-15-055

ZDI-15-056

ZDI-15-063

Affected Products

Webgate Control Center

PT-2015-5606 · Webgate · Webgate Control Center

CVE-2015-2099

Weakness Enumeration

Related Identifiers

Affected Products

References · 8