Lucene search

[email protected]CVE-2011-3332

HistoryOct 06, 2011 - 11:55 p.m.

CVE-2011-3332

2011-10-0623:55:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2011-3332

stack-based buffer overflow

iceni argus

infix

pdf

flate compression

nvd

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.099 Low

EPSS

Percentile

94.8%

JSON

Stack-based buffer overflow in Iceni Argus 6.20 and earlier and Infix 5.04 allows remote attackers to execute arbitrary code via a crafted PDF document that uses flate compression.

CPENameOperatorVersion
iceni:argusiceni argusle6.20
iceni:infixiceni infixeq5.04

CPE	Name	Operator	Version
iceni:argus	iceni argus	le	6.20
iceni:infix	iceni infix	eq	5.04

References

osvdb.org/76096

secunia.com/advisories/46320

www.kb.cert.org/vuls/id/225833

www.securityfocus.com/bid/49959

exchange.xforce.ibmcloud.com/vulnerabilities/70343

8.2 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.099 Low

EPSS

Percentile

94.8%

JSON

Related for CVE-2011-3332

prion1 cvelist1 cert1