← back
CVE-2010-4142

CVE-2010-4142

EPSS 63.6%
Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) SCPC_INITIALIZE, (2) SCPC_INITIALIZE_RF, or (3) SCPC_TXTEVENT packet. NOTE: it was later reported that 1.06 is also affected by one of these requests.
Affected products
n/a · n/a
public PoCs found7
cve_referencewww.exploit-db.com/exploits/15259unverifiedcve_referencewww.exploit-db.com/exploits/15337unverifiedexploitdbwww.exploit-db.com/exploits/15259unverifiedexploitdbwww.exploit-db.com/exploits/15337unverifiedexploitdbwww.exploit-db.com/exploits/16382unverifiedexploitdbwww.exploit-db.com/exploits/16383unverifiedexploitdbwww.exploit-db.com/exploits/16384unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://aluigi.org/adv/realwin_1-adv.txthttp://secunia.com/advisories/41849http://www.exploit-db.com/exploits/15259http://www.exploit-db.com/exploits/15337http://www.securityfocus.com/bid/44150