Vulnerabilities > Clientsoftware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-11-20 | CVE-2008-5176 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Clientsoftware Wincom MPD Total Multiple buffer overflows in Client Software WinCom LPD Total 3.0.2.623 and earlier allow remote attackers to execute arbitrary code via (1) a long 0x02 command to the remote administration service on TCP port 13500 or (2) a long invalid control filename to LPDService.exe on TCP port 515. | 9.3 |
2008-11-18 | CVE-2008-5159 | Numeric Errors vulnerability in Clientsoftware Wincome MPD Total Integer overflow in the remote administration protocol processing in Client Software WinCom LPD Total 3.0.2.623 and earlier allows remote attackers to cause a denial of service (crash) via a large string length argument, which triggers memory corruption. | 10.0 |
2008-11-18 | CVE-2008-5158 | Improper Authentication vulnerability in Clientsoftware Wincome MPD Total Client Software WinCom LPD Total 3.0.2.623 and earlier allows remote attackers to bypass authentication and perform administrative actions via vectors involving "simply skipping the auth stage." | 7.5 |