Lucene search

[email protected]CVE-2008-5405

HistoryDec 10, 2008 - 6:44 a.m.

CVE-2008-5405

2008-12-1006:44:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-5405

buffer overflow

rdp protocol

cain & abel

nvd

security vulnerability

8.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.838 High

EPSS

Percentile

98.5%

JSON

Stack-based buffer overflow in the RDP protocol password decoder in Cain & Abel 4.9.23 and 4.9.24, and possibly earlier, allows remote attackers to execute arbitrary code via an RDP file containing a long string.

CPENameOperatorVersion
oxid:cain_and_abeloxid cain and abeleq4.9.23
oxid:cain_and_abeloxid cain and abeleq4.9.24

CPE	Name	Operator	Version
oxid:cain_and_abel	oxid cain and abel	eq	4.9.23
oxid:cain_and_abel	oxid cain and abel	eq	4.9.24

References

osvdb.org/50342

oxid.netsons.org/phpBB2/viewtopic.php?t=2750

secunia.com/advisories/32794

securityreason.com/securityalert/4703

www.securityfocus.com/bid/32543

www.vupen.com/english/advisories/2008/3286

exchange.xforce.ibmcloud.com/vulnerabilities/46940

www.exploit-db.com/exploits/7297

www.exploit-db.com/exploits/7309

Social References

8.4 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.838 High

EPSS

Percentile

98.5%

JSON

Related for CVE-2008-5405

packetstorm1 checkpoint_advisories1 prion1 cvelist1