Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0434

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-0434
Last Modified 07 Mar 2011 10:04:43
Published 23 Jan 2008 05:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0434

Summary

Format string vulnerability in the AXIMilter module in AXIGEN Mail Server 5.0.2 allows remote attackers to execute arbitrary code via format string specifiers in the CNHO command.

Vulnerable Systems

Application

  • Gecad Technologies Axigen Mail Server 5.0.2


References

XF - axigen-aximilter-format-string(39803)

VUPEN - ADV-2008-0237

BID - 27363

BUGTRAQ - 20080120 AXIGEN 5.0.x AXIMilter Format String Exploit

MILW0RM - 4947

SECUNIA - 28562

SREASON - 3570


Last Updated: 27 May 2016 10:46:48