Radscan : Security Vulnerabilities, CVEs, CVSS score >= 7
Format string vulnerability in the osLogMsg function in server/os/aulog.c in Network Audio System (NAS) 1.9.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in unspecified vectors, related to syslog.
Max CVSS
7.5
EPSS Score
7.51%
Published
2013-10-09
Updated
2016-12-31
The ReadRequestFromClient function in server/os/io.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to cause a denial of service (crash) via multiple simultaneous connections, which triggers a NULL pointer dereference.
Max CVSS
7.8
EPSS Score
12.59%
Published
2007-03-20
Updated
2018-10-16
Stack-based buffer overflow in the accept_att_local function in server/os/connection.c in Network Audio System (NAS) before 1.8a SVN 237 allows remote attackers to execute arbitrary code via a long path slave name in a USL socket connection.
Max CVSS
10.0
EPSS Score
18.03%
Published
2007-03-20
Updated
2018-10-16
3 vulnerabilities found