Lucene search

[email protected]CVE-2008-7174

HistorySep 08, 2009 - 10:30 a.m.

CVE-2008-7174

2009-09-0810:30:01

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-7174

buffer overflows

jura impressa f90

coffee maker

denial of service

remote code execution

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

Low

0.046 Low

EPSS

Percentile

92.6%

JSON

Multiple buffer overflows in the Jura Internet Connection Kit for the Jura Impressa F90 coffee maker allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors related to improper use of the gets and sprintf functions.

Affected configurations

NVD

Node

juracapecoffeeinternet_connectivity_kit

AND

juracapecoffeejura_impressaMatchf90

CPENameOperatorVersion
juracapecoffee:internet_connectivity_kitjuracapecoffee internet connectivity kiteq*

CPE	Name	Operator	Version
juracapecoffee:internet_connectivity_kit	juracapecoffee internet connectivity kit	eq	*

References

news.cnet.com/8301-10784_3-9970757-7.html

www.securityfocus.com/archive/1/493387/100/0/threaded

www.securityfocus.com/archive/1/493433/100/0/threaded

www.securityfocus.com/bid/29767

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

Low

0.046 Low

EPSS

Percentile

92.6%

JSON

Related for CVE-2008-7174

prion1 nvd1 cvelist1