Netmechanica : Security Vulnerabilities, CVEs, Published In 2012
The Traffic Grapher Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the source code of NtDecision script files with a .nd extension via an invalid version number in an HTTP request, as demonstrated using default.nd. NOTE: some of these details are obtained from third party information.
Max CVSS
5.0
EPSS Score
6.61%
Published
2012-03-19
Updated
2017-08-29
CVE-2012-1465
Public exploit
Stack-based buffer overflow in the HTTP Server in NetMechanica NetDecision before 4.6.1 allows remote attackers to cause a denial of service (application crash) via a long URL in an HTTP request. NOTE: some of these details are obtained from third party information.
Max CVSS
4.3
EPSS Score
4.19%
Published
2012-03-19
Updated
2017-08-29
Dashboard Server for NetMechanica NetDecision before 4.6.1 allows remote attackers to obtain the installation path via a request with a trailing "?" character, which causes Dashboard to attempt to access a non-existent resource. NOTE: some of these details are obtained from third party information.
Max CVSS
5.0
EPSS Score
6.61%
Published
2012-03-19
Updated
2017-12-06
3 vulnerabilities found