Lucene search

[email protected]NVD:CVE-2008-5381

HistoryDec 09, 2008 - 12:30 a.m.

CVE-2008-5381

2008-12-0900:30:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.191

Percentile

96.3%

JSON

Buffer overflow in the URL processing in ffdshow (aka ffdshow-tryout) before SVN revision 2347 allows remote attackers to execute arbitrary code via a long URL.

Affected configurations

Nvd

Node

ffdshow-tryoutffdshow

VendorProductVersionCPE
ffdshow-tryoutffdshow*cpe:2.3:a:ffdshow-tryout:ffdshow:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ffdshow-tryout	ffdshow	*	cpe:2.3:a:ffdshow-tryout:ffdshow::::::::

References

secunia.com/advisories/32846

secunia.com/advisories/32881

security.bkis.vn/?p=277

securityreason.com/securityalert/4697

www.securityfocus.com/archive/1/498585/100/0/threaded

www.securityfocus.com/bid/32438

www.vupen.com/english/advisories/2008/3249

exchange.xforce.ibmcloud.com/vulnerabilities/46810

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.191

Percentile

96.3%

JSON

Related for NVD:CVE-2008-5381

checkpoint_advisories1 saint4 prion1 cvelist1 nessus1 cve1