Lucene search
MitreCVE-2008-3648HistoryAug 12, 2008 - 11:41 p.m.
CVE-2008-3648
2008-08-1223:41:00
CWE-94
mitre
web.nvd.nist.gov
26
cve-2008-3648
microsoft windows
remote code execution
nslookup.exe
dns zone transfer
nvd
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
High
EPSS
0.149
Percentile
95.9%
nslookup.exe in Microsoft Windows XP SP2 allows user-assisted remote attackers to execute arbitrary code, as demonstrated by an attempted DNS zone transfer, and as exploited in the wild in August 2008.
Affected configurations
Node
microsoftwindows_xpsp2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_xp | * | cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:* |
Related
openvas
openvas
Microsoft Windows NSlookup.exe RCE Vulnerability
2008-08-22 00:00:00
Microsoft Windows NSlookup.exe Remote Code Execution Vulnerability
2008-08-22 00:00:00
nvd
nvd
CVE-2008-3648
2008-08-12 23:41:00
prion
prion
Code injection
2008-08-12 23:41:00
cvelist
cvelist
CVE-2008-3648
2008-08-12 23:00:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.3
Confidence
High
EPSS
0.149
Percentile
95.9%
Related for CVE-2008-3648