CVE-2008-3538

Unspecified vulnerability in HP Enterprise Discovery 2.0 through 2.52 on Windows allows remote authenticated users to execute arbitrary code via unknown vectors. NOTE: the initial description of this CVE was inadvertently associated with libxml2, but it should be for HP Enterprise Discovery.

CVSS v2.0 9.0 HIGH

9.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:S/C:C/I:C/A:C

Exploitability : 8.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://marc.info/?l=bugtraq&m=121985360414288&w=2
http://secunia.com/advisories/31616	Vendor Advisory
http://securitytracker.com/id?1020760
http://www.securityfocus.com/bid/30865
http://www.vupen.com/english/advisories/2008/2446	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/44709

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:hp:enterprise_discovery:2.0:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.0.1:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.0.2:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.0.3:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.0.4:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.1:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.1.1:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.1.2:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.1.3:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.20:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.21:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.22:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.50:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.51:::::::*
	cpe:2.3:a:hp:enterprise_discovery:2.52:::::::*

cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2008-09-02 14:24

Updated : 2024-02-28 11:21

NVD link : CVE-2008-3538

Mitre link : CVE-2008-3538

CVE.ORG link : CVE-2008-3538

JSON object : View

Products Affected

microsoft

windows

hp

enterprise_discovery

CWE

NVD-CWE-noinfo

{"id": "CVE-2008-3538", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-09-02T14:24:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=121985360414288&w=2", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/31616", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1020760", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/30865", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2008/2446", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44709", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in HP Enterprise Discovery 2.0 through 2.52 on Windows allows remote authenticated users to execute arbitrary code via unknown vectors. NOTE: the initial description of this CVE was inadvertently associated with libxml2, but it should be for HP Enterprise Discovery."}, {"lang": "es", "value": "Una vulnerabilidad no especificada en Enterprise Discovery de HP versiones 2.0 hasta 2.52 en Windows, permite a usuarios autenticados remotos ejecutar c\u00f3digo arbitrario por medio de vectores desconocidos. NOTA: la descripci\u00f3n inicial de este CVE fue asociada inadvertidamente con libxml2, pero deber\u00eda ser para Enterprise Discovery de HP."}], "lastModified": "2017-08-08T01:31:57.967", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2840218F-D7A5-4DB2-B2BD-934EE3AFBE01"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70F74F8E-9851-4403-8A19-605D021350CC"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE6B8544-7455-4024-ABD2-FDFB96AC6B1B"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1B37843F-7655-4796-AECA-55538E63D901"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "827156CF-9366-403B-A884-50B542DCD1F5"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC4C982F-5B41-450D-9094-5181BCEC6041"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5ED12EA8-657F-4A33-BC29-6A5097132EB0"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BDD8889-909F-48AE-B4AE-17806BF1DAF4"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D81D977D-0B3D-4A58-9EA0-1C9FCFDFE067"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60A13D1E-E4E1-408F-9426-86BA4BFA575C"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C35C6824-A6D5-4193-88D7-931A0151D1C6"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.22:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "153CB6BC-98B7-4419-AC3B-D5F3E114BDF2"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.50:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D64A4860-7D43-4B9D-BB63-28C2833AC51C"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.51:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD9450A3-4B90-4087-822E-F618ECD0AF6C"}, {"criteria": "cpe:2.3:a:hp:enterprise_discovery:2.52:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "269EB34F-3F3F-4327-AEA6-7FE5D4E11B72"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}