Stack-Based Buffer Overflow in IniNet Embedded Web Server Affects Multiple Versions
CVE-2015-1001

Currently unrated

Key Information:

Vendor: Ininet Solutions
Status: Scada Web Server
Vendor: CVE Published:; 25 October 2015

🔔 Create Ininet Solutions Vulnerability Alert

What is CVE-2015-1001?

The IniNet embedded WebServer, also known as eWebServer, contains a vulnerability that allows remote attackers to exploit multiple stack-based buffer overflows. By sending crafted HTTP requests with overly long fields, attackers can execute arbitrary code on the affected system. This security flaw poses a significant risk to devices utilizing affected versions prior to 2.02, highlighting the need for timely updates and patching to safeguard against unauthorized access.

References

https://ics-cert.us-cert.gov/advisories/ICSA-15-293-02

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 25, 2015
Vulnerability Reserved
Jan 10, 2015