Lucene search

MitreCVE-2008-5282

HistoryNov 29, 2008 - 2:30 a.m.

CVE-2008-5282

2008-11-2902:30:00

CWE-119

mitre

web.nvd.nist.gov

cve-2008-5282

buffer overflow

w3c amaya web browser 10.0.1

security vulnerability

remote code execution

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.747

Percentile

98.2%

JSON

Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0.1 allow remote attackers to execute arbitrary code via (1) a link with a long HREF attribute, and (2) a DIV tag with a long id attribute.

Affected configurations

Nvd

Node

w3camaya_web_browserMatch10.0.1

VendorProductVersionCPE
w3camaya_web_browser10.0.1cpe:2.3:a:w3c:amaya_web_browser:10.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
w3c	amaya_web_browser	10.0.1	cpe:2.3:a:w3c:amaya_web_browser:10.0.1:::::::*

References

osvdb.org/50282

osvdb.org/50283

secunia.com/advisories/32848

securityreason.com/securityalert/4657

www.bmgsec.com.au/advisory/40/

www.bmgsec.com.au/advisory/41/

www.securityfocus.com/archive/1/498578/100/0/threaded

www.securityfocus.com/archive/1/498583/100/0/threaded

www.securityfocus.com/bid/32442

www.vupen.com/english/advisories/2008/3255

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.747

Percentile

98.2%

JSON

Related for CVE-2008-5282