Lucene search

[email protected]CVE-2008-0014

HistoryNov 17, 2008 - 11:30 p.m.

CVE-2008-0014

2008-11-1723:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-0014

buffer overflow

trend micro serverprotect

remote code execution

security vulnerability

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.078 Low

EPSS

Percentile

94.2%

JSON

Heap-based buffer overflow in an unspecified procedure in Trend Micro ServerProtect 5.7 and 5.58 allows remote attackers to execute arbitrary code via unknown vectors, possibly related to the product’s configuration, a different vulnerability than CVE-2008-0012 and CVE-2008-0013.

Affected configurations

NVD

Node

trend_microserverprotectMatch5.7

trend_microserverprotectMatch5.58

CPENameOperatorVersion
trend_micro:serverprotecttrend micro serverprotecteq5.7
trend_micro:serverprotecttrend micro serverprotecteq5.58

CPE	Name	Operator	Version
trend_micro:serverprotect	trend micro serverprotect	eq	5.7
trend_micro:serverprotect	trend micro serverprotect	eq	5.58

References

blogs.iss.net/archive/trend.html

secunia.com/advisories/32618

www.iss.net/threats/310.html

www.kb.cert.org/vuls/id/768681

www.securityfocus.com/bid/32261

www.vupen.com/english/advisories/2008/3127

exchange.xforce.ibmcloud.com/vulnerabilities/39920

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.078 Low

EPSS

Percentile

94.2%

JSON

Related for CVE-2008-0014

prion3 cvelist3 cve2 kaspersky1 nvd3 cert1 seebug1