Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0070

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2008-0070
Last Modified 07 Mar 2011 10:03:52
Published 31 Mar 2008 01:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-0070

Summary

Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow.

Vulnerable Systems

Application

  • Orb Networks Orb 2.0.1014


References

XF - orb-dimensions-bo(41410)

VUPEN - ADV-2008-0984

BID - 28431

MISC - http://secunia.com/secunia_research/2008-5/advisory/

SECUNIA - 28203


Last Updated: 27 May 2016 10:46:40