Lucene search

[email protected]CVE-2008-4402

HistoryOct 03, 2008 - 3:07 p.m.

CVE-2008-4402

2008-10-0315:07:10

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-4402

buffer overflow

trend micro officescan

remote code execution

security vulnerability

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.123 Low

EPSS

Percentile

95.4%

JSON

Multiple buffer overflows in CGI modules in the server in Trend Micro OfficeScan 8.0 SP1 before build 2439 and 8.0 SP1 Patch 1 before build 3087 allow remote attackers to execute arbitrary code via unspecified vectors.

Affected configurations

NVD

Node

trend_microofficescanMatch8.0sp1

trend_microofficescanMatch8.0sp1_patch1

CPENameOperatorVersion
trend_micro:officescantrend micro officescaneq8.0

CPE	Name	Operator	Version
trend_micro:officescan	trend micro officescan	eq	8.0

References

secunia.com/advisories/32097

www.securityfocus.com/bid/31531

www.securitytracker.com/id?1020974

www.trendmicro.com/ftp/documentation/readme/OSCE8.0_SP1_Patch1_CriticalPatch_3087_Readme.txt

www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2439_Readme.txt

www.vupen.com/english/advisories/2008/2712

exchange.xforce.ibmcloud.com/vulnerabilities/45608

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.123 Low

EPSS

Percentile

95.4%

JSON

Related for CVE-2008-4402

prion1 nvd1 cvelist1 nessus1