Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-2149
HistoryMay 12, 2008 - 9:20 p.m.

CVE-2008-2149

2008-05-1221:20:00
CWE-119
[email protected]
web.nvd.nist.gov
27
cve-2008-2149
buffer overflow
wordnet
searchwn
arbitrary code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.4%

JSON

Stack-based buffer overflow in the searchwn function in Wordnet 2.0, 2.1, and 3.0 might allow context-dependent attackers to execute arbitrary code via a long command line option. NOTE: this issue probably does not cross privilege boundaries except in cases in which Wordnet is used as a back end.

Affected configurations

NVD
Node
wordnetwordnetMatch2.0
OR
wordnetwordnetMatch2.1
OR
wordnetwordnetMatch3.0

Related

debiancve 1
nvd 1
cbl_mariner 2
debian 2
seebug 1
openvas 10
ubuntucve 1
prion 1
cvelist 1
securityvulns 1
nessus 3
gentoo 1
osv 1
debiancve
debiancve
CVE-2008-2149
2008-05-12 21:20:00
nvd
nvd
CVE-2008-2149
2008-05-12 21:20:00
cbl_mariner
cbl_mariner
CVE-2008-2149 affecting package wordnet for versions less than 3.0-38
2023-02-14 22:38:48
CVE-2008-2149 affecting package wordnet for versions less than 3.0-43
2024-04-03 00:40:51
debian
debian
[SECURITY] [DSA 1634-1] New wordnet packages fix arbitrary code execution
2008-09-01 19:17:47
[SECURITY] [DSA 1634-2] New wordnet packages fix regression
2008-09-20 13:26:57
seebug
seebug
WordNet倚δΈͺζ ˆζΊ’ε‡ΊζΌζ΄ž
2008-05-17 00:00:00
openvas
openvas
Debian Security Advisory DSA 1634-2 (wordnet)
2008-09-24 00:00:00
Mandriva Update for wordnet MDVSA-2008:182 (wordnet)
2009-04-09 00:00:00
Mandriva Update for wordnet MDVSA-2008:182 (wordnet)
2009-04-09 00:00:00
ubuntucve
ubuntucve
CVE-2008-2149
2008-05-12 00:00:00
prion
prion
Stack overflow
2008-05-12 21:20:00
cvelist
cvelist
CVE-2008-2149
2008-05-12 21:00:00
securityvulns
securityvulns
WordNet library multiple buffer overflows
2008-09-02 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : wordnet (MDVSA-2008:182-1)
2009-04-23 00:00:00
Debian DSA-1634-1 : wordnet - stack and heap overflows
2008-09-05 00:00:00
GLSA-200810-01 : WordNet: Execution of arbitrary code
2008-10-08 00:00:00
gentoo
gentoo
WordNet: Execution of arbitrary code
2008-10-07 00:00:00
osv
osv
wordnet - arbitrary code execution
2008-09-01 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.012 Low

EPSS

Percentile

85.4%

JSON
Related for CVE-2008-2149
debiancve1nvd1cbl_mariner2debian2seebug1openvas10ubuntucve1prion1cvelist1securityvulns1nessus3gentoo1osv1