Lucene search

[email protected]NVD:CVE-2008-4470

HistoryOct 07, 2008 - 12:31 a.m.

CVE-2008-4470

2008-10-0700:31:08

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

Confidence

High

EPSS

0.005

Percentile

77.0%

JSON

Stack-based buffer overflow in Numark CUE 5.0 rev2 allows user-assisted attackers to cause a denial of service (application crash) or execute arbitrary code via an M3U playlist file that contains a long absolute pathname.

Affected configurations

Nvd

Node

numarkcueMatch5.0rev2

VendorProductVersionCPE
numarkcue5.0cpe:2.3:a:numark:cue:5.0:rev2:*:*:*:*:*:*

Vendor	Product	Version	CPE
numark	cue	5.0	cpe:2.3:a:numark:cue:5.0:rev2::::::

References

securityreason.com/securityalert/4354

www.securityfocus.com/bid/31042

www.vupen.com/english/advisories/2008/2516

exchange.xforce.ibmcloud.com/vulnerabilities/44958

www.exploit-db.com/exploits/6389

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

Confidence

High

EPSS

0.005

Percentile

77.0%

JSON

Related for NVD:CVE-2008-4470

osv1 exploitdb1 cve1 cvelist1 prion1