Exploit for #VU55 Stack-based buffer overflow when parsing HTTP POST requests in Meinberg radio clocks GmbH & Co. KG Other software

Exploit for #VU55 Stack-based buffer overflow when parsing HTTP POST requests in Meinberg radio clocks GmbH & Co. KG Other software

Published: 2020-03-18 | Updated: 2020-04-07

Vulnerability identifier: #VU55

Vulnerability risk: High

CVSSv3.1: 8.9 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2016-3962

CWE-ID: CWE-119

Exploitation vector: Network

Exploits in database: 2

April 7, 2020
- CVE-2016-3962-Exploit (CVE-2016-3962-Exploit) [Github]
March 18, 2020
- Meinberg NTP Time Server ELX800/GPS M4x V5.30p - Remote Command Execution / Escalate Privileges [Exploit-DB]

Impact: Code execution

Vulnerable software:
IMS-LANTIME M1000
Other software / Other software solutions
IMS-LANTIME M500
Other software / Other software solutions
LANTIME M900
Other software / Other software solutions
LANTIME M600
Other software / Other software solutions
LANTIME M400
Other software / Other software solutions
LANTIME M300
Other software / Other software solutions
LANTIME M200
Other software / Other software solutions
LANTIME M100
Other software / Other software solutions
SyncFire 1100
Other software / Other software solutions
LCES
Other software / Other software solutions

Vendor: Meinberg radio clocks GmbH & Co. KG