- Home
- CVEs with nessus.description==The remote host contains the 'NELaunchCtrl' ActiveX control included with the SonicWALL NetExtender VPN client software.
The version of this control installed on the remote host fails to validate arguments to several methods, such as 'AddRouteEntry', 'serverAddress', 'sessionId', 'clientIPLower', etc. If a remote attacker can trick a user on the affected host into visiting a specially crafted web page, the attacker could leverage these issues to overflow a buffer and execute arbitrary code on the host subject to the user's privileges.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top