Lucene search

[email protected]CVE-2008-0380

HistoryJan 22, 2008 - 8:00 p.m.

CVE-2008-0380

2008-01-2220:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-0380

buffer overflow

rtspvapgdecoder.dll

activex control

remote code execution

nvd

7.9 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.104 Low

EPSS

Percentile

95.0%

JSON

Buffer overflow in the Digital Data Communications RtspVaPgCtrl ActiveX control (RtspVapgDecoder.dll 1.1.0.29) allows remote attackers to execute arbitrary code via a long MP4Prefix property.

Affected configurations

NVD

Node

digital_data_communicationsrtspvapgdecoder.dllMatch1.1.0.29

CPENameOperatorVersion
digital_data_communications:rtspvapgdecoder.dlldigital data communications rtspvapgdecoder.dlleq1.1.0.29

CPE	Name	Operator	Version
digital_data_communications:rtspvapgdecoder.dll	digital data communications rtspvapgdecoder.dll	eq	1.1.0.29

References

secunia.com/advisories/28492

www.securityfocus.com/bid/27337

www.vupen.com/english/advisories/2008/0182

www.exploit-db.com/exploits/4932

7.9 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.104 Low

EPSS

Percentile

95.0%

JSON

Related for CVE-2008-0380

cvelist1 prion1 nvd1