Lucene search

[email protected]CVE-2008-1402

HistoryMar 20, 2008 - 10:44 a.m.

CVE-2008-1402

2008-03-2010:44:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2008-1402

mg-soft

net inspector

windows

denial of service

snmp

vulnerability

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.4%

JSON

MG-SOFT Net Inspector 6.5.0.828 and earlier for Windows allows remote attackers to cause a (1) denial of service (exception and crash) via a UDP packet to the SNMP Trap Service (MgWTrap3.exe) or (2) denial of service (device freeze or memory consumption) via a malformed request to the Net Inspector Server (niengine).

Affected configurations

NVD

Node

microsoftwindows

AND

mg-softnet_inspectorRange≤6.5.0.828

CPENameOperatorVersion
mg-soft:net_inspectormg-soft net inspectorle6.5.0.828

CPE	Name	Operator	Version
mg-soft:net_inspector	mg-soft net inspector	le	6.5.0.828

References

aluigi.altervista.org/adv/netinsp-adv.txt

secunia.com/advisories/29421

www.securityfocus.com/archive/1/489704/100/0/threaded

www.securityfocus.com/bid/28266

www.exploit-db.com/exploits/5269

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.4%

JSON

Related for CVE-2008-1402

cvelist1 prion1 nvd1