Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2008-3520
HistoryOct 02, 2008 - 6:18 p.m.

CVE-2008-3520

2008-10-0218:18:05
CWE-189
[email protected]
web.nvd.nist.gov
7

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.4

Confidence

High

EPSS

0.002

Percentile

61.2%

JSON

Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.

Affected configurations

Nvd
Node
jasper_projectjasperMatch1.900.1
VendorProductVersionCPE
jasper_projectjasper1.900.1cpe:2.3:a:jasper_project:jasper:1.900.1:*:*:*:*:*:*:*

Related

prion 1
ubuntucve 2
veracode 1
cve 1
debiancve 1
cvelist 1
nessus 20
openvas 38
fedora 2
oraclelinux 1
redhat 2
gentoo 1
securityvulns 3
centos 1
ubuntu 2
freebsd 1
slackware 1
prion
prion
Integer overflow
2008-10-02 18:18:00
ubuntucve
ubuntucve
CVE-2008-3520
2008-10-02 00:00:00
CVE-2015-8751
2020-02-17 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:34:17
cve
cve
CVE-2008-3520
2008-10-02 18:18:05
debiancve
debiancve
CVE-2008-3520
2008-10-02 18:18:05
cvelist
cvelist
CVE-2008-3520
2008-10-02 18:00:00
nessus
nessus
Mandriva Linux Security Advisory : ghostscript (MDVSA-2009:144)
2009-06-28 00:00:00
GLSA-200812-18 : JasPer: User-assisted execution of arbitrary code
2008-12-17 00:00:00
RHEL 4 / 5 : netpbm (RHSA-2009:0012)
2009-02-12 00:00:00
openvas
openvas
RedHat Security Advisory RHSA-2009:0012
2009-02-13 00:00:00
Fedora Core 11 FEDORA-2009-10761 (jasper)
2009-11-11 00:00:00
Mandrake Security Advisory MDVSA-2009:165 (ghostscript)
2009-08-17 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: jasper-1.900.1-13.fc11
2009-10-27 06:43:29
[SECURITY] Fedora 10 Update: jasper-1.900.1-13.fc10
2009-10-27 06:37:10
oraclelinux
oraclelinux
netpbm security update
2009-02-11 00:00:00
redhat
redhat
(RHSA-2009:0012) Moderate: netpbm security update
2009-02-11 00:00:00
(RHSA-2015:0698) Important: rhevm-spice-client security, bug fix, and enhancement update
2015-03-18 00:00:00
gentoo
gentoo
JasPer: User-assisted execution of arbitrary code
2008-12-16 00:00:00
securityvulns
securityvulns
[ GLSA 200812-18 ] JasPer: User-assisted execution of arbitrary code
2008-12-17 00:00:00
Jasper library multiplesecurity vulnerabilities
2009-03-20 00:00:00
[USN-742-1] JasPer vulnerabilities
2009-03-20 00:00:00
centos
centos
netpbm security update
2009-02-11 19:31:04
ubuntu
ubuntu
JasPer vulnerabilities
2009-03-19 00:00:00
Ghostscript vulnerabilities
2012-01-04 00:00:00
freebsd
freebsd
jasper -- buffer overflow
2011-12-09 00:00:00
slackware
slackware
[slackware-security] jasper
2015-10-29 22:48:48

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.4

Confidence

High

EPSS

0.002

Percentile

61.2%

JSON
Related for NVD:CVE-2008-3520
prion1ubuntucve2veracode1cve1debiancve1cvelist1nessus20openvas38fedora2oraclelinux1redhat2gentoo1securityvulns3centos1ubuntu2freebsd1slackware1