A buffer overflow vulnerability in login function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices.
References
Link | Resource |
---|---|
http://www.securitytracker.com/id/1040018 | Third Party Advisory VDB Entry |
https://www.qnap.com/zh-tw/security-advisory/nas-201712-15 | Issue Tracking Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: qnap
Published: 2017-12-15T00:00:00
Updated: 2017-12-22T10:57:01
Reserved: 2017-11-28T00:00:00
Link: CVE-2017-17029
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-12-21T15:29:00.503
Modified: 2018-01-04T18:45:35.213
Link: CVE-2017-17029
JSON object: View
Redhat Information
No data.
CWE