CVE-2008-2654

🗓️ 13 Jun 2008 18:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 48 Views

Off-by-one error in Motion 3.2.10 allows remote code execution via long request to HTTP Control

Reporter	Title	Published	Views	Family All 11
Cvelist	CVE-2008-2654	13 Jun 200818:00	–	cvelist
Debian CVE	CVE-2008-2654	13 Jun 200818:00	–	debiancve
EUVD	EUVD-2008-2649	7 Oct 202500:30	–	euvd
Tenable Nessus	GLSA-200807-02 : Motion: Execution of arbitrary code	8 Jul 200800:00	–	nessus
Gentoo Linux	Motion: Execution of arbitrary code	1 Jul 200800:00	–	gentoo
NVD	CVE-2008-2654	13 Jun 200818:41	–	nvd
OpenVAS	Gentoo Security Advisory GLSA 200807-02 (motion)	24 Sep 200800:00	–	openvas
OpenVAS	Gentoo Security Advisory GLSA 200807-02 (motion)	24 Sep 200800:00	–	openvas
OSV	DEBIAN-CVE-2008-2654	13 Jun 200818:41	–	osv
Prion	Stack overflow	13 Jun 200818:41	–	prion

NVD

Node

lavrsen motionRange≤3.2.10

OR

lavrsen motionMatch3.1.17

OR

lavrsen motionMatch3.1.18

OR

lavrsen motionMatch3.1.19

OR

lavrsen motionMatch3.1.20

OR

lavrsen motionMatch3.2.1

OR

lavrsen motionMatch3.2.2

OR

lavrsen motionMatch3.2.3

OR

lavrsen motionMatch3.2.4

OR

lavrsen motionMatch3.2.5

OR

lavrsen motionMatch3.2.6

OR

lavrsen motionMatch3.2.7

OR

lavrsen motionMatch3.2.8

OR

lavrsen motionMatch3.2.9

Source	Link
lavrsen	www.lavrsen.dk/twiki/pub/Motion/ReleaseNoteMotion3x2x10/webhttpd-security.diff
marc	www.marc.info/
secunia	www.secunia.com/advisories/30864
secunia	www.secunia.com/advisories/30544
lavrsen	www.lavrsen.dk/twiki/pub/Motion/ReleaseNoteMotion3x2x9/webhttpd-security-video2-backport.diff
marc	www.marc.info/
security	www.security.gentoo.org/glsa/glsa-200807-02.xml
securityfocus	www.securityfocus.com/bid/29636
marc	www.marc.info/
vupen	www.vupen.com/english/advisories/2008/1796

23 Apr 2026 00:35Current

7.8High risk

Vulners AI Score7.8

CVSS 210

EPSS0.0746

motion cve-2008-2654 buffer overflow remote code execution security vulnerability webhttpd