Vulnerabilities > CVE-2002-0449 - Buffer Overflow vulnerability in Talentsoft Web+ Server 4.6/5.0

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

talentsoft

critical

NVD

Published: 2002-07-26

Updated: 2017-07-19

Summary

Buffer overflow in webpsvc.exe for Talentsoft Web+ 5.0 and earlier allows remote attackers to execute arbitrary code via a long argument to webplus.exe program, which triggers the overflow in webpsvc.exe.

Vulnerable Configurations

Part	Description	Count
Application	Talentsoft Talentsoft Web+ Server 4.6 Talentsoft Web+ Server 5.0	2

References

http://marc.info/?l=bugtraq&m=101535141925150&w=2
http://www.iss.net/security_center/static/8361.php
http://www.kb.cert.org/vuls/id/159907
http://www.securityfocus.com/bid/4233
http://www.talentsoft.com/Issues/IssueDetail.wml?ID=WP943