Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2008-7232
HistorySep 14, 2009 - 2:30 p.m.

CVE-2008-7232

2009-09-1414:30:00
CWE-119
mitre
web.nvd.nist.gov
23
cve-2008-7232
buffer overflow
xtacacsd
arbitrary code execution
remote attackers

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

Low

EPSS

0.505

Percentile

97.5%

JSON

Buffer overflow in the report function in xtacacsd 4.1.2 and earlier allows remote attackers to execute arbitrary code via a crafted CONNECT TACACS command.

Affected configurations

Nvd
Node
netplex-techxtacacsdRange4.1.2
OR
netplex-techxtacacsdMatch2.0
OR
netplex-techxtacacsdMatch3.0
OR
netplex-techxtacacsdMatch3.1
OR
netplex-techxtacacsdMatch3.2
OR
netplex-techxtacacsdMatch3.3
OR
netplex-techxtacacsdMatch3.4
OR
netplex-techxtacacsdMatch3.5
OR
netplex-techxtacacsdMatch4.0
OR
netplex-techxtacacsdMatch4.1
OR
netplex-techxtacacsdMatch4.1.1
VendorProductVersionCPE
netplex-techxtacacsd*cpe:2.3:a:netplex-tech:xtacacsd:*:*:*:*:*:*:*:*
netplex-techxtacacsd2.0cpe:2.3:a:netplex-tech:xtacacsd:2.0:*:*:*:*:*:*:*
netplex-techxtacacsd3.0cpe:2.3:a:netplex-tech:xtacacsd:3.0:*:*:*:*:*:*:*
netplex-techxtacacsd3.1cpe:2.3:a:netplex-tech:xtacacsd:3.1:*:*:*:*:*:*:*
netplex-techxtacacsd3.2cpe:2.3:a:netplex-tech:xtacacsd:3.2:*:*:*:*:*:*:*
netplex-techxtacacsd3.3cpe:2.3:a:netplex-tech:xtacacsd:3.3:*:*:*:*:*:*:*
netplex-techxtacacsd3.4cpe:2.3:a:netplex-tech:xtacacsd:3.4:*:*:*:*:*:*:*
netplex-techxtacacsd3.5cpe:2.3:a:netplex-tech:xtacacsd:3.5:*:*:*:*:*:*:*
netplex-techxtacacsd4.0cpe:2.3:a:netplex-tech:xtacacsd:4.0:*:*:*:*:*:*:*
netplex-techxtacacsd4.1cpe:2.3:a:netplex-tech:xtacacsd:4.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 111

Related

prion 1
exploitdb 2
seebug 1
nvd 1
metasploit 1
packetstorm 1
cvelist 1
prion
prion
Buffer overflow
2009-09-14 14:30:00
exploitdb
exploitdb
Xtacacsd 4.1.2 - 'report()' Remote Buffer Overflow (Metasploit)
2008-01-08 00:00:00
XTACACSD <= 4.1.2 report Buffer Overflow
2010-05-09 00:00:00
seebug
seebug
Xtacacsd &lt;= 4.1.2 report Buffer Overflow
2008-01-08 00:00:00
nvd
nvd
CVE-2008-7232
2009-09-14 14:30:00
metasploit
metasploit
XTACACSD report() Buffer Overflow
2008-02-02 16:06:39
packetstorm
packetstorm
XTACACSD 4.1.2 Buffer Overflow
2009-10-27 00:00:00
cvelist
cvelist
CVE-2008-7232
2009-09-14 14:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

Low

EPSS

0.505

Percentile

97.5%

JSON
Related for CVE-2008-7232
prion1exploitdb2seebug1nvd1metasploit1packetstorm1cvelist1