Main Vulnerability Database Vulnerabilities #VU14574

Buffer overflow in PHP Script Mall - CVE-2018-15897

Published: August 30, 2018

Vulnerability identifier: #VU14574

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-15897

CWE-ID: CWE-120

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: PHP Script Mall

Affected software:
PHP Script Mall

Detailed vulnerability description

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The vulnerability exists due to buffer overflow when handling malicious input. A remote attacker can send specially crafted JavaScript code in the First Name, Last Name, Company Name, or Fax field, trigger memory corruption and cause the application to crash.

How to mitigate CVE-2018-15897

Cybersecurity Help is currently unaware of any solutions addressing the vulnerability.

Sources

https://gkaim.com/cve-2018-15897-vikas-chaudhary/

Buffer overflow in PHP Script Mall - CVE-2018-15897

Detailed vulnerability description

How to mitigate CVE-2018-15897

Sources

Please verify you're human