Lucene search

[email protected]CVE-2008-5282

HistoryNov 29, 2008 - 2:30 a.m.

CVE-2008-5282

2008-11-2902:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-5282

buffer overflow

w3c amaya web browser 10.0.1

security vulnerability

remote code execution

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.747 High

EPSS

Percentile

98.2%

JSON

Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0.1 allow remote attackers to execute arbitrary code via (1) a link with a long HREF attribute, and (2) a DIV tag with a long id attribute.

Affected configurations

NVD

Node

w3camaya_web_browserMatch10.0.1

CPENameOperatorVersion
w3c:amaya_web_browserw3c amaya web browsereq10.0.1

CPE	Name	Operator	Version
w3c:amaya_web_browser	w3c amaya web browser	eq	10.0.1

References

osvdb.org/50282

osvdb.org/50283

secunia.com/advisories/32848

securityreason.com/securityalert/4657

www.bmgsec.com.au/advisory/40/

www.bmgsec.com.au/advisory/41/

www.securityfocus.com/archive/1/498578/100/0/threaded

www.securityfocus.com/archive/1/498583/100/0/threaded

www.securityfocus.com/bid/32442

www.vupen.com/english/advisories/2008/3255

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.747 High

EPSS

Percentile

98.2%

JSON

Related for CVE-2008-5282

openvas6 ubuntucve1 nvd1 cvelist1 prion1 freebsd1 nessus1