var-201702-0307
Vulnerability from variot
An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an attacker to modify memory locations and possibly cause a denial of service or the execution of arbitrary code. Moxa SoftCMS Will change the memory area, disturb service operation (DoS) Vulnerabilities exist that could be put into a state or execute arbitrary code.Denial of service caused by attacker changing memory area (DoS) Could be put into a state or execute arbitrary code. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Moxa SoftCMS. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of requests to the web server. A crafted URL can cause a pointer to be reused after it has been freed. An attacker can leverage this vulnerability to execute arbitrary code under the context of Administrator. Moxa SoftCMS is a set of central management software developed by Moxa for large-scale monitoring systems. The software supports real-time video surveillance, video playback, and event management. Moxa SoftCMS is prone to multiple security vulnerabilities
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "softcms",
"scope": "eq",
"trust": 1.5,
"vendor": "moxa",
"version": "1.5"
},
{
"_id": null,
"model": "softcms",
"scope": "lte",
"trust": 1.0,
"vendor": "moxa",
"version": "1.5"
},
{
"_id": null,
"model": "softcms",
"scope": "eq",
"trust": 0.9,
"vendor": "moxa",
"version": "1.4"
},
{
"_id": null,
"model": "softcms",
"scope": "eq",
"trust": 0.9,
"vendor": "moxa",
"version": "1.3"
},
{
"_id": null,
"model": "softcms",
"scope": "eq",
"trust": 0.9,
"vendor": "moxa",
"version": "1.2"
},
{
"_id": null,
"model": "softcms",
"scope": "lt",
"trust": 0.8,
"vendor": "moxa",
"version": "1.6"
},
{
"_id": null,
"model": "softcms",
"scope": null,
"trust": 0.7,
"vendor": "moxa",
"version": null
},
{
"_id": null,
"model": "softcms",
"scope": "ne",
"trust": 0.3,
"vendor": "moxa",
"version": "1.6"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-615"
},
{
"db": "CNVD",
"id": "CNVD-2016-11356"
},
{
"db": "BID",
"id": "94394"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
},
{
"db": "CNNVD",
"id": "CNNVD-201611-432"
},
{
"db": "NVD",
"id": "CVE-2016-8360"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:moxa:softcms",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
}
]
},
"credits": {
"_id": null,
"data": "Zhou Yu",
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-615"
}
],
"trust": 0.7
},
"cve": "CVE-2016-8360",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CVE-2016-8360",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 1.8,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "ZDI",
"availabilityImpact": "COMPLETE",
"baseScore": 7.6,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 4.9,
"id": "CVE-2016-8360",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "HIGH",
"trust": 0.7,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CNVD-2016-11356",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "VHN-97180",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.2,
"id": "CVE-2016-8360",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2016-8360",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2016-8360",
"trust": 0.8,
"value": "High"
},
{
"author": "ZDI",
"id": "CVE-2016-8360",
"trust": 0.7,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2016-11356",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201611-432",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-97180",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-615"
},
{
"db": "CNVD",
"id": "CNVD-2016-11356"
},
{
"db": "VULHUB",
"id": "VHN-97180"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
},
{
"db": "CNNVD",
"id": "CNNVD-201611-432"
},
{
"db": "NVD",
"id": "CVE-2016-8360"
}
]
},
"description": {
"_id": null,
"data": "An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an attacker to modify memory locations and possibly cause a denial of service or the execution of arbitrary code. Moxa SoftCMS Will change the memory area, disturb service operation (DoS) Vulnerabilities exist that could be put into a state or execute arbitrary code.Denial of service caused by attacker changing memory area (DoS) Could be put into a state or execute arbitrary code. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Moxa SoftCMS. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of requests to the web server. A crafted URL can cause a pointer to be reused after it has been freed. An attacker can leverage this vulnerability to execute arbitrary code under the context of Administrator. Moxa SoftCMS is a set of central management software developed by Moxa for large-scale monitoring systems. The software supports real-time video surveillance, video playback, and event management. Moxa SoftCMS is prone to multiple security vulnerabilities",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-8360"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
},
{
"db": "ZDI",
"id": "ZDI-16-615"
},
{
"db": "CNVD",
"id": "CNVD-2016-11356"
},
{
"db": "BID",
"id": "94394"
},
{
"db": "VULHUB",
"id": "VHN-97180"
}
],
"trust": 3.15
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2016-8360",
"trust": 4.1
},
{
"db": "ICS CERT",
"id": "ICSA-16-322-02",
"trust": 2.8
},
{
"db": "BID",
"id": "94394",
"trust": 2.6
},
{
"db": "ZDI",
"id": "ZDI-16-615",
"trust": 1.0
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-4032",
"trust": 0.7
},
{
"db": "CNNVD",
"id": "CNNVD-201611-432",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2016-11356",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-97180",
"trust": 0.1
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-615"
},
{
"db": "CNVD",
"id": "CNVD-2016-11356"
},
{
"db": "VULHUB",
"id": "VHN-97180"
},
{
"db": "BID",
"id": "94394"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
},
{
"db": "CNNVD",
"id": "CNNVD-201611-432"
},
{
"db": "NVD",
"id": "CVE-2016-8360"
}
]
},
"id": "VAR-201702-0307",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-11356"
},
{
"db": "VULHUB",
"id": "VHN-97180"
}
],
"trust": 1.29090906
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-11356"
}
]
},
"last_update_date": "2024-11-23T22:18:05.711000Z",
"patch": {
"_id": null,
"data": [
{
"title": "SoftCMS",
"trust": 0.8,
"url": "http://www.moxa.com/product/SoftCMS.htm"
},
{
"title": "Moxa has issued an update to correct this vulnerability.",
"trust": 0.7,
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-16-322-02"
},
{
"title": "Patch for Moxa SoftCMS Denial of Service Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/84135"
},
{
"title": "Moxa SoftCMS Double release vulnerability fixes",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=65773"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-615"
},
{
"db": "CNVD",
"id": "CNVD-2016-11356"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
},
{
"db": "CNNVD",
"id": "CNNVD-201611-432"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-415",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-97180"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
},
{
"db": "NVD",
"id": "CVE-2016-8360"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 3.5,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-16-322-02"
},
{
"trust": 2.3,
"url": "http://www.securityfocus.com/bid/94394"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-8360"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-8360"
},
{
"trust": 0.3,
"url": "http://www.moxa.com/product/softcms.htm"
},
{
"trust": 0.3,
"url": "http://www.zerodayinitiative.com/advisories/zdi-16-615/"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-16-615"
},
{
"db": "CNVD",
"id": "CNVD-2016-11356"
},
{
"db": "VULHUB",
"id": "VHN-97180"
},
{
"db": "BID",
"id": "94394"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
},
{
"db": "CNNVD",
"id": "CNNVD-201611-432"
},
{
"db": "NVD",
"id": "CVE-2016-8360"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "ZDI",
"id": "ZDI-16-615",
"ident": null
},
{
"db": "CNVD",
"id": "CNVD-2016-11356",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-97180",
"ident": null
},
{
"db": "BID",
"id": "94394",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2016-007633",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201611-432",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2016-8360",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2016-11-23T00:00:00",
"db": "ZDI",
"id": "ZDI-16-615",
"ident": null
},
{
"date": "2016-11-21T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-11356",
"ident": null
},
{
"date": "2017-02-13T00:00:00",
"db": "VULHUB",
"id": "VHN-97180",
"ident": null
},
{
"date": "2016-11-17T00:00:00",
"db": "BID",
"id": "94394",
"ident": null
},
{
"date": "2017-03-08T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-007633",
"ident": null
},
{
"date": "2016-11-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201611-432",
"ident": null
},
{
"date": "2017-02-13T21:59:00.987000",
"db": "NVD",
"id": "CVE-2016-8360",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2016-11-23T00:00:00",
"db": "ZDI",
"id": "ZDI-16-615",
"ident": null
},
{
"date": "2016-11-21T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-11356",
"ident": null
},
{
"date": "2017-02-17T00:00:00",
"db": "VULHUB",
"id": "VHN-97180",
"ident": null
},
{
"date": "2016-12-20T16:03:00",
"db": "BID",
"id": "94394",
"ident": null
},
{
"date": "2017-03-08T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-007633",
"ident": null
},
{
"date": "2016-11-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201611-432",
"ident": null
},
{
"date": "2024-11-21T02:59:13.223000",
"db": "NVD",
"id": "CVE-2016-8360",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201611-432"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Moxa SoftCMS Vulnerability to change memory area",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-007633"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "other",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201611-432"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…