Buffer overflow in hasplms in Gemalto ACC (Admin Control Center), all versions ranging from HASP SRM 2.10 to Sentinel LDK 7.50, allows remote attackers to shut down the remote process (a denial of service) via a language pack (ZIP file) with invalid HTML files.
Un desbordamiento de búfer en hasplms en Gemalto ACC (Admin Control Center) en todas sus versiones desde HASP SRM 2.10 hasta Sentinel LDK 7.50 permite que los atacantes remotos detengan el proceso remoto (denegación de servicio) mediante un paquete de lenguaje (archivo ZIP) con archivos HTML no válidos.
AV:N/AC:L/Au:N/C:N/I:N/A:P
| Access Vector | NETWORK |
|---|---|
| Access Complexity | LOW |
| Authentication | NONE |
| Confidentiality Impact | NONE |
| Integrity Impact | NONE |
| Availability Impact | PARTIAL |
| Source | Type | Description |
|---|---|---|
| [email protected] | Primary |
en
CWE-119
|
| Vendor | Product | Version | Update | Type |
|---|---|---|---|---|
| gemalto | sentinel_ldk_rte | 2.10 | <built-in method update of dict object at 0x72a9ccd2b300> | Application |
| gemalto | sentinel_ldk_rte | 3.0 | <built-in method update of dict object at 0x72a9b0b3adc0> | Application |
| gemalto | sentinel_ldk_rte | 7.1 | <built-in method update of dict object at 0x72a9b0b39840> | Application |
| gemalto | sentinel_ldk_rte | 7.50 | <built-in method update of dict object at 0x72a9b0b6b000> | Application |
| Vulnerable | CPE |
|---|---|
| Yes | cpe:2.3:a:gemalto:sentinel_ldk_rte:2.10:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:gemalto:sentinel_ldk_rte:3.0:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:gemalto:sentinel_ldk_rte:7.1:*:*:*:*:*:*:* |
| Yes | cpe:2.3:a:gemalto:sentinel_ldk_rte:7.50:*:*:*:*:*:*:* |