Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-5603

Published: 05/11/2007 Updated: 15/10/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 940
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Ssl Vpn

Vulnerability Summary

Stack-based buffer overflow in the SonicWall SSL-VPN NetExtender NELaunchCtrl ActiveX control prior to 2.1.0.51, and 2.5.x prior to 2.5.0.56, allows remote malicious users to execute arbitrary code via a long string in the second argument to the AddRouteEntry method.

Vulnerable Product Search on Vulmon Subscribe to Product

sonicwall ssl vpn

Exploits

Exploit DB: SonicWALL SSL-VPN - NetExtender ActiveX Control Buffer Overflow (Metasploit)
## # $Id: sonicwall_addrouteentryrb 9262 2010-05-09 17:45:00Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' ...
Exploit DB: SonicWALL SSL-VPN - 'NeLaunchCtrl' ActiveX Control Remote Command Execution
<!-- SonicWall SSL-VPN NeLaunchCtrl ActiveX Control exploit by krafty greets to SK, muts, halvar, grugq, and all the ethnical hackers sux to exploit traders - ZDI, WabiSabiLabi, and all you h0arders Bring back the days of technotronic and r00tshell! Freedom poc: launches calculator Tested with IE6 XP SP2 I'm sure it works with IE7 and ...

References

CWE-119http://www.kb.cert.org/vuls/id/WDON-78K56Mhttp://www.sec-consult.com/303.htmlhttp://www.sec-consult.com/fileadmin/Advisories/20071101-0_sonicwall_multiple.txthttp://www.kb.cert.org/vuls/id/298521http://www.securityfocus.com/bid/26288http://secunia.com/advisories/27469http://www.securitytracker.com/id?1018891http://securityreason.com/securityalert/3342http://www.vupen.com/english/advisories/2007/3696https://exchange.xforce.ibmcloud.com/vulnerabilities/38220https://www.exploit-db.com/exploits/4594http://www.securityfocus.com/archive/1/483097/100/0/threadedhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/16616/https://www.kb.cert.org/vuls/id/298521
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook