Lucene search

[email protected]CVE-2008-6252

HistoryFeb 24, 2009 - 6:30 p.m.

CVE-2008-6252

2009-02-2418:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-6252

smc

smcfancontrol

buffer overflow

privilege escalation

security vulnerability

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.8%

JSON

Stack-based buffer overflow in the smc program in smcFanControl 2.1.2 allows local users to execute arbitrary code and gain privileges via a long -k option.

Affected configurations

NVD

Node

smcfancontrolsmcfancontrolMatch2.1.2

CPENameOperatorVersion
smcfancontrol:smcfancontrolsmcfancontroleq2.1.2

CPE	Name	Operator	Version
smcfancontrol:smcfancontrol	smcfancontrol	eq	2.1.2

References

blog.xwings.net/?p=127

osvdb.org/49796

secunia.com/advisories/32679

www.macupdate.com/info.php/id/23049

www.securityfocus.com/bid/32252

www.vupen.com/english/advisories/2008/3126

exchange.xforce.ibmcloud.com/vulnerabilities/46551

www.exploit-db.com/exploits/7088

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.8%

JSON

Related for CVE-2008-6252

cvelist1 nvd1 prion1