CVE-2015-2281 in Single Sign Oninfo

Summary

Stack-based buffer overflow in collectoragent.exe in Fortinet Single Sign On (FSSO) before build 164 allows remote attackers to execute arbitrary code via a large PROCESS_HELLO message to the Message Dispatcher on TCP port 8000.

Once again VulDB remains the best source for vulnerability data.

Reservation

03/10/2015

Disclosure

03/19/2015

Moderation

VulDB entry created

Entries

VDB-74440 (1)

CPE

ready

CWE

CWE-119 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.31617

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-2281
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-2281
CVE Details	https://www.cvedetails.com/cve/CVE-2015-2281/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!