Lucene search

[email protected]NVD:CVE-2008-4132

HistorySep 19, 2008 - 5:15 p.m.

CVE-2008-4132

2008-09-1917:15:05

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

High

EPSS

0.02

Percentile

89.0%

JSON

Stack-based buffer overflow in the VSFlexGrid.VSFlexGridL ActiveX control in ComponentOne VSFlexGrid 7.0.1.151 and 8.0.20072.239 allows remote attackers to execute arbitrary code via a long first argument to the Archive method. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

Nvd

Node

componentonevsflexgridMatch7.0.1.151

componentonevsflexgridMatch8.0.20072.239

VendorProductVersionCPE
componentonevsflexgrid7.0.1.151cpe:2.3:a:componentone:vsflexgrid:7.0.1.151:*:*:*:*:*:*:*
componentonevsflexgrid8.0.20072.239cpe:2.3:a:componentone:vsflexgrid:8.0.20072.239:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
componentone	vsflexgrid	7.0.1.151	cpe:2.3:a:componentone:vsflexgrid:7.0.1.151:::::::*
componentone	vsflexgrid	8.0.20072.239	cpe:2.3:a:componentone:vsflexgrid:8.0.20072.239:::::::*

References

www.securityfocus.com/bid/31200

exchange.xforce.ibmcloud.com/vulnerabilities/45184

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

High

EPSS

0.02

Percentile

89.0%

JSON

Related for NVD:CVE-2008-4132

prion1 cve1 cvelist1