Stack-based buffer overflow in swnet.dll in YaSoft Switch Off 2.3 and earlier allows remote authenticated users to execute arbitrary code via a long message parameter in a SendMsg action to action.htm.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Switch_off | Yatsoft | 0.7 (including) | 0.7 (including) |
Switch_off | Yatsoft | 1.0 (including) | 1.0 (including) |
Switch_off | Yatsoft | 1.1 (including) | 1.1 (including) |
Switch_off | Yatsoft | 1.2 (including) | 1.2 (including) |
Switch_off | Yatsoft | 1.3 (including) | 1.3 (including) |
Switch_off | Yatsoft | 1.4 (including) | 1.4 (including) |
Switch_off | Yatsoft | 1.5 (including) | 1.5 (including) |
Switch_off | Yatsoft | 1.5.1 (including) | 1.5.1 (including) |
Switch_off | Yatsoft | 1.6 (including) | 1.6 (including) |
Switch_off | Yatsoft | 1.7 (including) | 1.7 (including) |
Switch_off | Yatsoft | 1.8 (including) | 1.8 (including) |
Switch_off | Yatsoft | 1.9 (including) | 1.9 (including) |
Switch_off | Yatsoft | 2.0 (including) | 2.0 (including) |
Switch_off | Yatsoft | 2.1 (including) | 2.1 (including) |
Switch_off | Yatsoft | 2.2 (including) | 2.2 (including) |
Switch_off | Yatsoft | 2.3 (including) | 2.3 (including) |