Lucene search
HistoryMay 29, 2008 - 4:32 p.m.
CVE-2008-0955
cve-2008-0955
stack-based buffer overflow
ctsueng.ocx
activex control
security vulnerability
remote code execution
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
Low
0.615 Medium
EPSS
Percentile
97.8%
Stack-based buffer overflow in the Creative Software AutoUpdate Engine ActiveX control in CTSUEng.ocx allows remote attackers to execute arbitrary code via a long CacheFolder property value.
Affected configurations
Node
creativecreative_software_autoupdate_engine
| CPE | Name | Operator | Version |
|---|---|---|---|
| creative:creative_software_autoupdate_engine | creative creative software autoupdate engine | eq | * |
Related
nessus
nessus
d2
d2
DSquare Exploit Pack: D2SEC_CREATIVE
2008-05-29 16:32:00
checkpoint_advisories
checkpoint_advisories
seebug
seebug
Creative软件自动升级引擎ActiveX控件栈溢出漏洞
2008-05-30 00:00:00
cert
cert
Creative Software AutoUpdate Engine ActiveX stack buffer overflow
2008-05-27 00:00:00
nvd
nvd
CVE-2008-0955
2008-05-29 16:32:00
cvelist
cvelist
CVE-2008-0955
2008-05-29 16:00:00
packetstorm
packetstorm
Creative Software AutoUpdate Engine ActiveX Control Buffer Overflow
2009-11-26 00:00:00
prion
prion
Stack overflow
2008-05-29 16:32:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.8 High
AI Score
Confidence
Low
0.615 Medium
EPSS
Percentile
97.8%
Related for CVE-2008-0955