Lucene search

[email protected]CVE-2008-0764

HistoryFeb 13, 2008 - 9:00 p.m.

CVE-2008-0764

2008-02-1321:00:00

CWE-134

[email protected]

web.nvd.nist.gov

cve-2008-0764

larson network print server

vulnerability

format string

remote code execution

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.138 Low

EPSS

Percentile

95.7%

JSON

Format string vulnerability in the logging function in Larson Network Print Server (LstNPS) 9.4.2 build 105 and earlier for Windows might allow remote attackers to execute arbitrary code via format string specifiers in a USEP command on TCP port 3114.

Affected configurations

NVD

Node

larson_software_technologynetwork_print_serverRange≤9.4.2build_105

CPENameOperatorVersion
larson_software_technology:network_print_serverlarson software technology network print serverle9.4.2

CPE	Name	Operator	Version
larson_software_technology:network_print_server	larson software technology network print server	le	9.4.2

References

aluigi.altervista.org/adv/lstnpsx-adv.txt

secunia.com/advisories/28890

www.securityfocus.com/archive/1/487956/100/0/threaded

www.securityfocus.com/bid/27732

www.vupen.com/english/advisories/2008/0500

exchange.xforce.ibmcloud.com/vulnerabilities/40420

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.138 Low

EPSS

Percentile

95.7%

JSON

Related for CVE-2008-0764

cvelist1 nvd1 prion1