Lucene search

[email protected]CVE-2008-3558

HistoryAug 08, 2008 - 7:41 p.m.

CVE-2008-3558

2008-08-0819:41:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-3558

cisco

webex

meeting manager

buffer overflow

security

vulnerability

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.925 High

EPSS

Percentile

99.0%

JSON

Stack-based buffer overflow in the WebexUCFObject ActiveX control in atucfobj.dll in Cisco WebEx Meeting Manager before 20.2008.2606.4919 allows remote attackers to execute arbitrary code via a long argument to the NewObject method.

Affected configurations

NVD

Node

ciscowebex_meeting_managerMatch20.2008.2601.4928

CPENameOperatorVersion
cisco:webex_meeting_managercisco webex meeting managereq20.2008.2601.4928

CPE	Name	Operator	Version
cisco:webex_meeting_manager	cisco webex meeting manager	eq	20.2008.2601.4928

References

lists.grok.org.uk/pipermail/full-disclosure/2008-August/063692.html

secunia.com/advisories/31397

www.cisco.com/en/US/products/products_security_advisory09186a00809e2006.shtml

www.kb.cert.org/vuls/id/661827

www.securityfocus.com/bid/30578

www.securitytracker.com/id?1020641

www.vupen.com/english/advisories/2008/2319

exchange.xforce.ibmcloud.com/vulnerabilities/44250

www.exploit-db.com/exploits/6220

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.925 High

EPSS

Percentile

99.0%

JSON

Related for CVE-2008-3558

saint4 cisco1 packetstorm1 cvelist1 nessus1 d21 checkpoint_advisories2 prion2 nvd2 cve1 cert1