CVE-2017-2867

CVSS 9 CRITICALEPSS 2.3%

An exploitable code execution vulnerability exists in the SavePatientMontage functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in code execution. An attacker can a malicious packet to trigger this vulnerability.

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Produtos afetados

Natus Medical Incorporated · Natus

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://talosintelligence.com/vulnerability_reports/TALOS-2017-0373 http://www.securityfocus.com/bid/104490