ByteOS Network

weblaunch

Source -

NVD

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2008-0220

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-7.5||HIGH

EPSS-42.07% / 97.34%

7 Day CHG~0.00%

Published-10 Jan, 2008 | 23:00

Updated-07 Aug, 2024 | 07:39

Multiple stack-based buffer overflows in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allow remote attackers to execute arbitrary code via a long string in the (1) second or (2) fourth argument to the DoWebLaunch method. NOTE: some of these details are obtained from third party information.

Vendor-gateway n/a

Product-weblaunch cweblaunchctl_activex_control n/a

CWE ID-CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE-2008-0221

Assigner-MITRE Corporation

View Details

Assigner-MITRE Corporation

CVSS Score-9.3||HIGH

EPSS-2.61% / 85.06%

7 Day CHG~0.00%

Published-10 Jan, 2008 | 23:00

Updated-07 Aug, 2024 | 07:39

Directory traversal vulnerability in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allows remote attackers to execute arbitrary programs via a ..\ (dot dot backslash) in the second argument to the DoWebLaunch method. NOTE: some of these details are obtained from third party information.

Vendor-gateway n/a

Product-weblaunch n/a

CWE ID-CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')