Lucene search

[email protected]CVE-2009-0608

HistoryFeb 17, 2009 - 5:30 p.m.

CVE-2009-0608

2009-02-1717:30:05

CWE-189

[email protected]

web.nvd.nist.gov

cve

2009

0608

integer overflow

showlog function

liblog

open handset alliance

android 1.0

buffer overflow

nvd

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.1%

JSON

Integer overflow in the showLog function in fake_log_device.c in liblog in Open Handset Alliance Android 1.0 allows attackers to trigger a buffer overflow and possibly have unspecified other impact by sending a large number of input lines.

Affected configurations

NVD

Node

androidandroid_sdkMatch1.0

CPENameOperatorVersion
android:android_sdkandroid android sdkeq1.0

CPE	Name	Operator	Version
android:android_sdk	android android sdk	eq	1.0

References

www.securityfocus.com/archive/1/500753/100/0/threaded

www.securityfocus.com/bid/33695

exchange.xforce.ibmcloud.com/vulnerabilities/48842

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.1%

JSON

Related for CVE-2009-0608

prion1 cvelist1 nvd1