Lucene search

[email protected]CVE-2008-1914

HistoryApr 22, 2008 - 4:41 a.m.

CVE-2008-1914

2008-04-2204:41:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-1914

antserver

bigant im server

bigant messenger 2.2

buffer overflow

remote code execution

security vulnerability

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.756 High

EPSS

Percentile

98.2%

JSON

Stack-based buffer overflow in the AntServer module (AntServer.exe) in BigAnt IM Server in BigAnt Messenger 2.2 allows remote attackers to execute arbitrary code via a long URI in a request to TCP port 6080. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

bigantsoftbigant_messengerMatch2.2

CPENameOperatorVersion
bigantsoft:bigant_messengerbigantsoft bigant messengereq2.2

CPE	Name	Operator	Version
bigantsoft:bigant_messenger	bigantsoft bigant messenger	eq	2.2

References

secunia.com/advisories/29831

www.securityfocus.com/archive/1/490916/100/0/threaded

www.securityfocus.com/archive/1/491035/100/0/threaded

www.securityfocus.com/bid/28795

www.vupen.com/english/advisories/2008/1238/references

exchange.xforce.ibmcloud.com/vulnerabilities/41830

www.exploit-db.com/exploits/5451

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.756 High

EPSS

Percentile

98.2%

JSON

Related for CVE-2008-1914

canvas1 prion1 cvelist1 nvd1 packetstorm1