CVE-2014-5501

CyberoamOS < 10.6.1 - Stack-based Buffer Overflow via Diagnose Service

Title source: llm
STIX 2.1

Description

Stack-based buffer overflow in the diagnose service in the Sophos Cyberoam appliances with CyberoamOS before 10.6.1 GA allows remote attackers to execute arbitrary code via a crafted webpage or file.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
http://kb.cyberoam.com/default.asp?id=3049
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-334/

Scores

EPSS 0.0366
EPSS Percentile 88.3%

Details

CWE
CWE-119
Status published
Products (2)
cyberoam/cyberoam_os < 10.4
cyberoam/cyberoam_os < 10.6.1
Published Oct 07, 2014
Tracked Since Feb 18, 2026