ID CVE-2008-7225
Type cve
Reporter cve@mitre.org
Modified 2018-10-11T20:58:00
Description
Heap-based buffer overflow in Foxit Remote Access Server (aka WAC Server) 2.0 Build 3503 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long SSH packets, a different vulnerability than CVE-2008-0151.
{"id": "CVE-2008-7225", "bulletinFamily": "NVD", "title": "CVE-2008-7225", "description": "Heap-based buffer overflow in Foxit Remote Access Server (aka WAC Server) 2.0 Build 3503 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long SSH packets, a different vulnerability than CVE-2008-0151.", "published": "2009-09-14T14:30:00", "modified": "2018-10-11T20:58:00", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-7225", "reporter": "cve@mitre.org", "references": ["http://www.securityfocus.com/archive/1/488366/100/200/threaded", "http://www.securityfocus.com/bid/27873", "http://aluigi.org/adv/wachof-adv.txt"], "cvelist": ["CVE-2008-7225"], "type": "cve", "lastseen": "2021-02-02T05:35:21", "edition": 4, "viewCount": 4, "enchantments": {"dependencies": {"references": [], "modified": "2021-02-02T05:35:21", "rev": 2}, "score": {"value": 8.6, "vector": "NONE", "modified": "2021-02-02T05:35:21", "rev": 2}, "vulnersScore": 8.6}, "cpe": ["cpe:/a:foxitsoftware:wac_server:2.0"], "affectedSoftware": [{"cpeName": "foxitsoftware:wac_server", "name": "foxitsoftware wac server", "operator": "eq", "version": "2.0"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:foxitsoftware:wac_server:2.0:*:*:*:*:*:*:*"], "cwe": ["CWE-119"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:foxitsoftware:wac_server:2.0:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "20080219 Two heap overflow in Foxit WAC Server 2.0 Build 3503", "refsource": "BUGTRAQ", "tags": [], "url": "http://www.securityfocus.com/archive/1/488366/100/200/threaded"}, {"name": "http://aluigi.org/adv/wachof-adv.txt", "refsource": "MISC", "tags": ["Exploit"], "url": "http://aluigi.org/adv/wachof-adv.txt"}, {"name": "27873", "refsource": "BID", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/27873"}]}
{}