CVE-2020-29659
N/A
N/A
Summary
A buffer overflow in the web server of Flexense DupScout Enterprise 10.0.18 allows a remote anonymous attacker to execute code as SYSTEM by overflowing the sid parameter via a GET /settings&sid= attack.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.exploit-db.com/exploits/49217
- https://www.dupscout.com
- https://fluidattacks.com/advisories/prine/
References
- https://www.exploit-db.com/exploits/49217
- https://www.dupscout.com
- https://fluidattacks.com/advisories/prine/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.