Lucene search

[email protected]NVD:CVE-2008-2910

HistoryJun 30, 2008 - 6:24 p.m.

CVE-2008-2910

2008-06-3018:24:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

High

EPSS

0.209

Percentile

96.4%

JSON

Buffer overflow in the DXTTextOutEffect ActiveX control (aka the Text-Effect DXT Filter), as distributed in TextOut.dll 6.0.18.1 and mvtextout.dll, in muvee autoProducer 6.0 and 6.1 allows remote attackers to execute arbitrary code via a long FontSetting property value.

Affected configurations

Nvd

Node

muveeautoproducerMatch6.0

muveeautoproducerMatch6.1

VendorProductVersionCPE
muveeautoproducer6.0cpe:2.3:a:muvee:autoproducer:6.0:*:*:*:*:*:*:*
muveeautoproducer6.1cpe:2.3:a:muvee:autoproducer:6.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
muvee	autoproducer	6.0	cpe:2.3:a:muvee:autoproducer:6.0:::::::*
muvee	autoproducer	6.1	cpe:2.3:a:muvee:autoproducer:6.1:::::::*

References

secunia.com/advisories/30696

www.securityfocus.com/bid/29693

exchange.xforce.ibmcloud.com/vulnerabilities/43036

www.exploit-db.com/exploits/5793

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

High

EPSS

0.209

Percentile

96.4%

JSON

Related for NVD:CVE-2008-2910

cvelist1 exploitdb1 prion1 cve1