CVE-2017-7310

A buffer overflow vulnerability in Import Command in SyncBreeze before 10.6, DiskSorter before 10.6, DiskBoss before 8.9, DiskPulse before 10.6, DiskSavvy before 10.6, DupScout before 10.6, and VX Search before 10.6 allows attackers to execute arbitrary code via a crafted XML file containing a long name attribute of a classify element.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:flexense:diskboss:7.8.16:*:*:*:enterprise:*:*:*
cpe:2.3:a:flexense:disksorter:9.5.12:*:*:*:enterprise:*:*:*
cpe:2.3:a:flexense:syncbreeze:9.5.16:*:*:*:enterprise:*:*:*

History

21 Nov 2024, 03:31

Type Values Removed Values Added
References () http://www.diskboss.com/news.html - () http://www.diskboss.com/news.html -
References () http://www.diskpulse.com/news.html - () http://www.diskpulse.com/news.html -
References () http://www.disksavvy.com/news.html - () http://www.disksavvy.com/news.html -
References () http://www.disksorter.com/news.html - () http://www.disksorter.com/news.html -
References () http://www.dupscout.com/news.html - () http://www.dupscout.com/news.html -
References () http://www.securityfocus.com/bid/97237 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/97237 - Third Party Advisory, VDB Entry
References () http://www.syncbreeze.com/news.html - () http://www.syncbreeze.com/news.html -
References () http://www.vxsearch.com/news.html - () http://www.vxsearch.com/news.html -
References () https://www.exploit-db.com/exploits/41771/ - Exploit, Third Party Advisory, VDB Entry () https://www.exploit-db.com/exploits/41771/ - Exploit, Third Party Advisory, VDB Entry
References () https://www.exploit-db.com/exploits/41772/ - Exploit, Third Party Advisory, VDB Entry () https://www.exploit-db.com/exploits/41772/ - Exploit, Third Party Advisory, VDB Entry
References () https://www.exploit-db.com/exploits/41773/ - Exploit, Third Party Advisory, VDB Entry () https://www.exploit-db.com/exploits/41773/ - Exploit, Third Party Advisory, VDB Entry
References () https://www.exploit-db.com/exploits/43875/ - () https://www.exploit-db.com/exploits/43875/ -
References () https://www.exploit-db.com/exploits/44157/ - () https://www.exploit-db.com/exploits/44157/ -

Information

Published : 2017-03-29 21:59

Updated : 2024-11-21 03:31


NVD link : CVE-2017-7310

Mitre link : CVE-2017-7310

CVE.ORG link : CVE-2017-7310


JSON object : View

Products Affected

flexense

  • disksorter
  • syncbreeze
  • diskboss
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer