CVE-2016-5680

Stack-based buffer overflow in cgi-bin/cgi_main in NUUO NVRmini 2 1.7.6 through 3.0.0 and NETGEAR ReadyNAS Surveillance 1.1.2 allows remote authenticated users to execute arbitrary code via the sn parameter to the transfer_license command.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:nuuo:nvrmini_2:1.7.6:*:*:*:*:*:*:*
cpe:2.3:o:nuuo:nvrmini_2:2.0.0:*:*:*:*:*:*:*
cpe:2.3:o:nuuo:nvrmini_2:2.2.1:*:*:*:*:*:*:*
cpe:2.3:o:nuuo:nvrmini_2:3.0.0:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:netgear:readynas_surveillance:1.1.2:*:*:*:*:*:*:*

History

21 Nov 2024, 02:54

Type Values Removed Values Added
References () http://www.kb.cert.org/vuls/id/856152 - Third Party Advisory, US Government Resource () http://www.kb.cert.org/vuls/id/856152 - Third Party Advisory, US Government Resource
References () http://www.securityfocus.com/bid/92318 - () http://www.securityfocus.com/bid/92318 -
References () https://www.exploit-db.com/exploits/40200/ - () https://www.exploit-db.com/exploits/40200/ -

Information

Published : 2016-08-31 15:59

Updated : 2024-11-21 02:54


NVD link : CVE-2016-5680

Mitre link : CVE-2016-5680

CVE.ORG link : CVE-2016-5680


JSON object : View

Products Affected

nuuo

  • nvrmini_2

netgear

  • readynas_surveillance
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer