Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2008-1770
HistoryJun 04, 2008 - 9:32 p.m.

CVE-2008-1770

2008-06-0421:32:00
CWE-94
mitre
web.nvd.nist.gov
33
crlf injection
akamai download manager
activex control
vulnerability
remote execution
arbitrary files
security

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.9

Confidence

Low

EPSS

0.16

Percentile

96.0%

JSON

CRLF injection vulnerability in Akamai Download Manager ActiveX control before 2.2.3.6 allows remote attackers to force the download and execution of arbitrary files via a URL parameter containing an encoded LF followed by a malicious target line.

Affected configurations

Nvd
Node
akamaidownload_managerRange2.2.3.5
OR
akamaidownload_managerMatch2.0.4.4
OR
akamaidownload_managerMatch2.2.0.0
OR
akamaidownload_managerMatch2.2.1.0
VendorProductVersionCPE
akamaidownload_manager*cpe:2.3:a:akamai:download_manager:*:*:*:*:*:*:*:*
akamaidownload_manager2.0.4.4cpe:2.3:a:akamai:download_manager:2.0.4.4:*:*:*:*:*:*:*
akamaidownload_manager2.2.0.0cpe:2.3:a:akamai:download_manager:2.2.0.0:*:*:*:*:*:*:*
akamaidownload_manager2.2.1.0cpe:2.3:a:akamai:download_manager:2.2.1.0:*:*:*:*:*:*:*

Related

kaspersky 1
securityvulns 3
prion 1
nessus 1
exploitdb 1
nvd 1
seebug 1
cvelist 1
kaspersky
kaspersky
KLA10054 ACE vulnerability in Akamai Download Manager
2008-06-04 00:00:00
securityvulns
securityvulns
Akamai Technologies Security Advisory 2008-0001 (Download Manager)
2008-06-05 00:00:00
Akamai Download Manager File Downloaded To Arbitrary Location Vulnerability
2008-06-05 00:00:00
Akamai Download Manager ActiveX code execution
2008-06-05 00:00:00
prion
prion
Crlf injection
2008-06-04 21:32:00
nessus
nessus
Akamai Download Manager ActiveX Control < 2.2.3.6 Arbitrary File Download
2008-06-05 00:00:00
exploitdb
exploitdb
Akamai Download Manager &lt; 2.2.3.7 - ActiveX Remote Download
2008-06-04 00:00:00
nvd
nvd
CVE-2008-1770
2008-06-04 21:32:00
seebug
seebug
Akamai下载管理器参数注入漏洞
2008-06-06 00:00:00
cvelist
cvelist
CVE-2008-1770
2008-06-04 21:00:00

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.9

Confidence

Low

EPSS

0.16

Percentile

96.0%

JSON
Related for CVE-2008-1770
kaspersky1securityvulns3prion1nessus1exploitdb1nvd1seebug1cvelist1