Rapid7 » Appspider Pro : Security Vulnerabilities, CVEs,

CVE-2017-5240

Editions of Rapid7 AppSpider Pro prior to version 6.14.060 contain a heap-based buffer overflow in the FLAnalyzer.exe component. A malicious or malformed Flash source file can cause a denial of service condition when parsed by this component, causing the application to crash.
Max CVSS
7.5
EPSS Score
0.13%
Published
2017-05-03
Updated
2017-05-16

CVE-2017-5236

Editions of Rapid7 AppSpider Pro installers prior to version 6.14.060 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer.
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-05-03
Updated
2017-05-15

CVE-2017-5233

Rapid7 AppSpider Pro installers prior to version 6.14.053 contain a DLL preloading vulnerability, wherein it is possible for the installer to load a malicious DLL located in the current working directory of the installer.
Max CVSS
7.8
EPSS Score
0.06%
Published
2017-03-02
Updated
2021-01-08
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close