Vulnerability Description
Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in the (1) registration code field in the activate license window or the (2) HKLM\SOFTWARE\MostGear\EasyLanFolderShare_V1\License registry key. NOTE: it is not clear from the original report whether this issue crosses privilege boundaries. If not, then it should not be included in CVE.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mostgear | Easy Lan Folder Share | 3.2.0.100 |
Related Weaknesses (CWE)
References
- http://osvdb.org/show/osvdb/94390
- http://packetstormsecurity.com/files/122677Exploit
- http://www.exploit-db.com/exploits/26214Exploit
- http://www.exploit-db.com/exploits/27316Exploit
- http://osvdb.org/show/osvdb/94390
- http://packetstormsecurity.com/files/122677Exploit
- http://www.exploit-db.com/exploits/26214Exploit
- http://www.exploit-db.com/exploits/27316Exploit
FAQ
What is CVE-2013-6079?
CVE-2013-6079 is a vulnerability with a CVSS score of 7.2 (HIGH). Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in the (1) re...
How severe is CVE-2013-6079?
CVE-2013-6079 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-6079?
Check the references section above for vendor advisories and patch information. Affected products include: Mostgear Easy Lan Folder Share.