Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0151

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-0151
Last Modified 25 Aug 2009 12:00:00
Published 08 Jan 2008 07:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0151

Summary

Heap-based buffer overflow in Foxit WAC Server 2.1.0.910, 2.0 Build 3503, and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Telnet request with long options.

Vulnerable Systems

Application

  • Foxitsoftware Wac Server 2.0

  • Foxitsoftware Wac Server 2.1.0.910


References

XF - wacserver-option-dos(39427)

BID - 27142

BUGTRAQ - 20080219 Two heap overflow in Foxit WAC Server 2.0 Build 3503

BUGTRAQ - 20080104 Some DoS in some telnet servers

SREASON - 3525

SECUNIA - 28272

MISC - http://aluigi.altervista.org/adv/wachof-adv.txt

MISC - http://aluigi.altervista.org/adv/waccaz-adv.txt


Last Updated: 27 May 2016 10:46:41