Lucene search

[email protected]CVE-2008-2404

HistoryJun 04, 2008 - 8:32 p.m.

CVE-2008-2404

2008-06-0420:32:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-2404

buffer overflow

sun java

asp server

remote code execution

nvd

8.2 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.093 Low

EPSS

Percentile

94.7%

JSON

Stack-based buffer overflow in the request handling implementation in Sun Java Active Server Pages (ASP) Server before 4.0.3 allows remote attackers to execute arbitrary code via an unspecified string field.

CPENameOperatorVersion
sun:java_asp_serversun java asp serverle4.0.2
sun:java_asp_serversun java asp servereq4.0

CPE	Name	Operator	Version
sun:java_asp_server	sun java asp server	le	4.0.2
sun:java_asp_server	sun java asp server	eq	4.0

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=708

secunia.com/advisories/30523

sunsolve.sun.com/search/document.do?assetkey=1-66-238184-1

www.securitytracker.com/id?1020189

www.vupen.com/english/advisories/2008/1742/references

exchange.xforce.ibmcloud.com/vulnerabilities/42830

Social References

8.2 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.093 Low

EPSS

Percentile

94.7%

JSON

Related for CVE-2008-2404

prion1 securityvulns2 nessus2