NVD

Id
35999  
Name
CVE-2014-9263  
Description
Multiple buffer overflows in the PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 control in 3S Pocketnet Tech VMS allow remote attackers to execute arbitrary code via a crafted string to the (1) StartRecord, (2) StartRecordEx, (3) StartScheduledRecord, (4) SetDisplayText, (5) GetONVIFDeviceInformation, (6) GetONVIFProfiles, or (7) GetONVIFStreamUri method or a crafted filename to the (8) SaveCurrentImage or (9) SaveCurrentImageEx method.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2014-12-08  
Modified Date
2014-12-23  
Seq
2014-9263  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
184083 35999 CVE-2014-9263 71488  View
184084 35999 CVE-2014-9263 http://www.zerodayinitiative.com/advisories/ZDI-14-393/  View
184085 35999 CVE-2014-9263 http://www.zerodayinitiative.com/advisories/ZDI-14-394/  View
184086 35999 CVE-2014-9263 http://www.zerodayinitiative.com/advisories/ZDI-14-395/  View
184087 35999 CVE-2014-9263 http://www.zerodayinitiative.com/advisories/ZDI-14-396/  View
184088 35999 CVE-2014-9263 http://www.zerodayinitiative.com/advisories/ZDI-14-397/  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
16952 JVNDB-2014-005827 3S Pocketnet Tech VMS の PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 コントロールにおけるバッファオーバーフローの脆弱性 3S Pocketnet Tech VMS の PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 コントロールには、バッファオーバーフローの脆弱性が存在します。 CVE-2014-9263 76556 CVE-2014-9263 35999 6.8 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-005827.html 2014-12-04 2014-12-25 View