Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Cross site request forgery (csrf)

🗓️ 13 Aug 2008 12:42:00Reported by PRIOn knowledge baseType 
prion
 prion🔗 www.prio-n.com👁 17 Views

Array index vulnerability in the Event System in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote authenticated users to execute arbitrary code via a crafted event subscription request that is used to access an array of function pointers

Related
Refs
ReporterTitlePublishedViews
Family
CVE		CVE-2008-1456
13 Aug 200810:00
cve
Cvelist		CVE-2008-1456
13 Aug 200810:00
cvelist
NVD		CVE-2008-1456
13 Aug 200812:42
nvd
OpenVAS		Vulnerabilities in Event System Could Allow Remote Code Execution (950974)
19 Aug 200800:00
openvas
OpenVAS		Vulnerabilities in Event System Could Allow Remote Code Execution (950974)
19 Aug 200800:00
openvas
securityvulns		Microsoft Security Bulletin MS08-049 – Important Vulnerabilities in Event System Could Allow Remote Code Execution (950974)
12 Aug 200800:00
securityvulns
securityvulns		Microsoft Windows privilege escalation
12 Aug 200800:00
securityvulns
Tenable Nessus		MS08-049: Vulnerabilities in Event System Could Allow Remote Code Execution (950974)
13 Aug 200800:00
nessus
seebug.org		Microsoft Windows事件系统数组索引验证权限提升漏洞(MS08-049)
15 Aug 200800:00
seebug

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
30 Oct 2018 16:25Current
7.6High risk
Vulners AI Score7.6
EPSS0.66294
vulnerabilityevent systemmicrosoft windowsremote usersarbitrary codecrafted requestfunction pointersauthentication
17