CVE-2014-5501
CyberoamOS < 10.6.1 - Stack-based Buffer Overflow via Diagnose Service
Title source: llmDescription
Stack-based buffer overflow in the diagnose service in the Sophos Cyberoam appliances with CyberoamOS before 10.6.1 GA allows remote attackers to execute arbitrary code via a crafted webpage or file.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://kb.cyberoam.com/default.asp?id=3049
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-334/
Scores
EPSS
0.0366
EPSS Percentile
88.3%
Details
CWE
CWE-119
Status
published
Products (2)
cyberoam/cyberoam_os
< 10.4
cyberoam/cyberoam_os
< 10.6.1
Published
Oct 07, 2014
Tracked Since
Feb 18, 2026