CVE-2008-2468

Multiple buffer overflows in the QIP Server Service (aka qipsrvr.exe) in LANDesk Management Suite, Security Suite, and Server Manager 8.8 and earlier allow remote attackers to execute arbitrary code via a crafted heal request, related to the StringToMap and StringSize arguments.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://community.landesk.com/support/docs/DOC-3276	Patch
http://dvlabs.tippingpoint.com/advisory/TPTI-08-06
http://secunia.com/advisories/31888
http://securityreason.com/securityalert/4269
http://www.kb.cert.org/vuls/id/538011	US Government Resource
http://www.securityfocus.com/archive/1/496369/100/0/threaded
http://www.securityfocus.com/bid/31193	Patch
http://www.securitytracker.com/id?1020888
http://www.vupen.com/english/advisories/2008/2588
https://exchange.xforce.ibmcloud.com/vulnerabilities/45154

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:landesk:landesk_management_suite::::::::
	cpe:2.3:a:landesk:landesk_management_suite:8.7:::::::*
	cpe:2.3:a:landesk:landesk_security_suite::::::::
	cpe:2.3:a:landesk:landesk_security_suite:8.7:::::::*
	cpe:2.3:a:landesk:landesk_server_manager::::::::
	cpe:2.3:a:landesk:landesk_server_manager:8.7:::::::*

History

No history.

Information

Published : 2008-09-18 15:04

Updated : 2024-02-28 11:21

NVD link : CVE-2008-2468

Mitre link : CVE-2008-2468

CVE.ORG link : CVE-2008-2468

JSON object : View

Products Affected

landesk

landesk_security_suite
landesk_server_manager
landesk_management_suite

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2008-2468", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-09-18T15:04:27.187", "references": [{"url": "http://community.landesk.com/support/docs/DOC-3276", "tags": ["Patch"], "source": "cret@cert.org"}, {"url": "http://dvlabs.tippingpoint.com/advisory/TPTI-08-06", "source": "cret@cert.org"}, {"url": "http://secunia.com/advisories/31888", "source": "cret@cert.org"}, {"url": "http://securityreason.com/securityalert/4269", "source": "cret@cert.org"}, {"url": "http://www.kb.cert.org/vuls/id/538011", "tags": ["US Government Resource"], "source": "cret@cert.org"}, {"url": "http://www.securityfocus.com/archive/1/496369/100/0/threaded", "source": "cret@cert.org"}, {"url": "http://www.securityfocus.com/bid/31193", "tags": ["Patch"], "source": "cret@cert.org"}, {"url": "http://www.securitytracker.com/id?1020888", "source": "cret@cert.org"}, {"url": "http://www.vupen.com/english/advisories/2008/2588", "source": "cret@cert.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45154", "source": "cret@cert.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in the QIP Server Service (aka qipsrvr.exe) in LANDesk Management Suite, Security Suite, and Server Manager 8.8 and earlier allow remote attackers to execute arbitrary code via a crafted heal request, related to the StringToMap and StringSize arguments."}, {"lang": "es", "value": "M\u00faltiples desbordamientos del b\u00fafer en el Servicio Servidor QIP (tambi\u00e9n conocido como qipsrvr.exe) en LANDesk Management Suite, Security Suite y Server Manager 8.8 y anteriores; permiten a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de una solicitud de cierre manipulada. Est\u00e1 relacionado con los argumentos StringToMap y StringSize."}], "lastModified": "2018-10-11T20:41:40.443", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:landesk:landesk_management_suite:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AAACB75E-6E9E-47E9-95C8-7C5431680EF3", "versionEndIncluding": "8.8"}, {"criteria": "cpe:2.3:a:landesk:landesk_management_suite:8.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76A064EF-94BD-44FC-BA24-1D09FCBA950E"}, {"criteria": "cpe:2.3:a:landesk:landesk_security_suite:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0874ECC6-1DE7-4010-8203-DB7EA0DEC2F1", "versionEndIncluding": "8.8"}, {"criteria": "cpe:2.3:a:landesk:landesk_security_suite:8.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9C4236A8-403A-4946-A819-E60E9F743025"}, {"criteria": "cpe:2.3:a:landesk:landesk_server_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B3DDEF2-9868-4CF8-AE6F-4157490E1CE5", "versionEndIncluding": "8.8"}, {"criteria": "cpe:2.3:a:landesk:landesk_server_manager:8.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E82F56E-16A2-4567-A11F-281EAF65FEB5"}], "operator": "OR"}]}], "sourceIdentifier": "cret@cert.org"}