CVE-2008-3169

Multiple heap-based buffer overflows in Empire Server before 4.3.15 allow remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors, related to a "coordinate normalization bug." NOTE: some of these details are obtained from third party information.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://freshmeat.net/projects/empserver/?branch_id=22267&release_id=280745
http://secunia.com/advisories/30954	Vendor Advisory
http://sourceforge.net/project/shownotes.php?group_id=24031&release_id=600111
http://www.securityfocus.com/bid/30152
https://exchange.xforce.ibmcloud.com/vulnerabilities/43655
http://freshmeat.net/projects/empserver/?branch_id=22267&release_id=280745
http://secunia.com/advisories/30954	Vendor Advisory
http://sourceforge.net/project/shownotes.php?group_id=24031&release_id=600111
http://www.securityfocus.com/bid/30152
https://exchange.xforce.ibmcloud.com/vulnerabilities/43655

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:empire_server:empire_server::::::::
	cpe:2.3:a:empire_server:empire_server:4.2.10:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.11:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.12:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.13:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.14:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.15:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.16:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.17:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.18:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.19:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.20:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.21:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.22:::::::*
	cpe:2.3:a:empire_server:empire_server:4.2.23:::::::*
	cpe:2.3:a:empire_server:empire_server:4.3.0:::::::*
	cpe:2.3:a:empire_server:empire_server:4.3.10:::::::*

History

21 Nov 2024, 00:48

Type	Values Removed	Values Added
References	~~() http://freshmeat.net/projects/empserver/?branch_id=22267&release_id=280745 -~~	() http://freshmeat.net/projects/empserver/?branch_id=22267&release_id=280745 -
References	~~() http://secunia.com/advisories/30954 - Vendor Advisory~~	() http://secunia.com/advisories/30954 - Vendor Advisory
References	~~() http://sourceforge.net/project/shownotes.php?group_id=24031&release_id=600111 -~~	() http://sourceforge.net/project/shownotes.php?group_id=24031&release_id=600111 -
References	~~() http://www.securityfocus.com/bid/30152 -~~	() http://www.securityfocus.com/bid/30152 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/43655 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/43655 -

Information

Published : 2008-07-14 23:41

Updated : 2024-11-21 00:48

NVD link : CVE-2008-3169

Mitre link : CVE-2008-3169

CVE.ORG link : CVE-2008-3169

JSON object : View

Products Affected

empire_server

empire_server

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

10.0 /10