Vulnerabilities (CVE)

Filtered by vendor Mastersoft Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-7877 2 Mastersoft, Microsoft 3 Zook Agent, Zook Viewer, Windows 2024-11-21 6.5 MEDIUM 8.0 HIGH
A buffer overflow issue was discovered in ZOOK solution(remote administration tool) through processing 'ConnectMe' command while parsing a crafted OUTERIP value because of missing boundary check. This vulnerability allows the attacker to execute remote arbitrary command.
CVE-2020-7869 2 Mastersoft, Microsoft 2 Zook, Windows 2024-11-21 9.0 HIGH 9.0 CRITICAL
An improper input validation vulnerability of ZOOK software (remote administration tool) could allow a remote attacker to create arbitrary file. The ZOOK viewer has the "Tight file CMD" function to create file. An attacker could create and execute arbitrary file in the ZOOK agent program using "Tight file CMD" without authority.