Lucene search
MitreCVE-2008-0443HistoryJan 25, 2008 - 12:00 a.m.
CVE-2008-0443
2008-01-2500:00:00
CWE-119
mitre
web.nvd.nist.gov
26
cve-2008-0443
fileuploader
activex
buffer overflow
remote code execution
security vulnerability
nvd
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.163
Percentile
96.1%
Heap-based buffer overflow in the FileUploader.FUploadCtl.1 ActiveX control in FileUploader.dll 2.0.0.2 in Lycos FileUploader Module allows remote attackers to execute arbitrary code via a long HandwriterFilename property value. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
lycosfileuploader.dllMatch2.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lycos | fileuploader.dll | 2.0.2 | cpe:2.3:a:lycos:fileuploader.dll:2.0.2:*:*:*:*:*:*:* |
Related
prion
prion
Heap overflow
2008-01-25 00:00:00
cvelist
cvelist
CVE-2008-0443
2008-01-24 23:00:00
exploitdb
exploitdb
Lycos FileUploader Control - ActiveX Remote Buffer Overflow
2008-01-22 00:00:00
nvd
nvd
CVE-2008-0443
2008-01-25 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.163
Percentile
96.1%
Related for CVE-2008-0443