Executive Summary

Informations
Name CVE-2015-3036 First vendor Publication 2015-05-20
Vendor Cve Last vendor Modification 2016-12-08

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score 10 Attack Range Network
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Stack-based buffer overflow in the run_init_sbus function in the KCodes NetUSB module for the Linux kernel, as used in certain NETGEAR products, TP-LINK products, and other products, allows remote attackers to execute arbitrary code by providing a long computer name in a session on TCP port 20005.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3036

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 1

Sources (Detail)

Source Url
BID http://www.securityfocus.com/bid/74724
CERT-VN http://www.kb.cert.org/vuls/id/177092
EXPLOIT-DB https://www.exploit-db.com/exploits/38454/
https://www.exploit-db.com/exploits/38566/
FULLDISC http://seclists.org/fulldisclosure/2015/May/74
http://seclists.org/fulldisclosure/2015/Oct/50
MISC http://blog.sec-consult.com/2015/05/kcodes-netusb-how-small-taiwanese.html
http://packetstormsecurity.com/files/131987/KCodes-NetUSB-Buffer-Overflow.html
http://packetstormsecurity.com/files/133919/NetUSB-Stack-Buffer-Overflow.html
https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/201505...
SECTRACK http://www.securitytracker.com/id/1032377

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
Date Informations
2021-05-04 12:39:15
  • Multiple Updates
2021-04-22 01:48:02
  • Multiple Updates
2020-05-23 00:44:58
  • Multiple Updates
2016-12-08 09:23:42
  • Multiple Updates
2016-12-07 21:24:36
  • Multiple Updates
2016-07-21 12:06:22
  • Multiple Updates
2015-06-30 21:58:31
  • Multiple Updates
2015-06-04 09:28:09
  • Multiple Updates
2015-05-22 05:29:11
  • Multiple Updates
2015-05-21 09:30:16
  • First insertion