This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of software utilizing MiniShare. The UPS management software contains a built-in web server which allows for remote management of the UPS. The management interface is protected by a username and password and the authentication is performed via Basic authentication. There is a small stack-based overflow in the base64 decoding routine which handles the Basic authentication data. Authentication is not required to exploit this vulnerability.

CVE Link

Exploit Platform

Windows

Exploit Type

Exploits

Remote

Product Name

Impact

Belkin BullDog Plus UPS-Service Buffer Overflow Exploit

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Impressum