Lucene search

[email protected]CVE-2009-1608

HistoryMay 11, 2009 - 8:00 p.m.

CVE-2009-1608

2009-05-1120:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-1608

buffer overflow

microchip mplab ide

remote code execution

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.061 Low

EPSS

Percentile

93.6%

JSON

Multiple buffer overflows in Microchip MPLAB IDE 8.30 and possibly earlier versions allow user-assisted remote attackers to execute arbitrary code via a .MCP project file with long (1) FILE_INFO, (2) CAT_FILTERS, and possibly other fields.

Affected configurations

NVD

Node

microchipmplab_ideMatch8.30

CPENameOperatorVersion
microchip:mplab_idemicrochip mplab ideeq8.30

CPE	Name	Operator	Version
microchip:mplab_ide	microchip mplab ide	eq	8.30

References

osvdb.org/54370

secunia.com/advisories/35054

security.bkis.vn/?p=654

www.securityfocus.com/archive/1/503400/100/0/threaded

www.securityfocus.com/bid/34897

exchange.xforce.ibmcloud.com/vulnerabilities/50418

exchange.xforce.ibmcloud.com/vulnerabilities/50419

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

Low

0.061 Low

EPSS

Percentile

93.6%

JSON

Related for CVE-2009-1608

cvelist2 prion2 nvd2 cve1