Lucene search

K
cve[email protected]CVE-2008-2828
HistoryJun 23, 2008 - 7:41 p.m.

CVE-2008-2828

2008-06-2319:41:00
CWE-119
web.nvd.nist.gov
20
cve-2008-2828
stack-based buffer overflow
tmsnc
denial of service
crash
arbitrary code execution
msn packet
ubx command
nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.049 Low

EPSS

Percentile

92.8%

Stack-based buffer overflow in tmsnc allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an MSN packet with a UBX command containing a large UBX payload length field.

Affected configurations

NVD
Node
tmsnctmsnc
CPENameOperatorVersion
tmsnc:tmsnctmsnceq*

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.049 Low

EPSS

Percentile

92.8%