Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4762

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2008-4762
Last Modified 07 Mar 2011 10:13:15
Published 27 Oct 2008 10:00:04
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-4762

Summary

Stack-based buffer overflow in freeSSHd 1.2.1 allows remote authenticated users to cause a denial of service (service crash) and potentially execute arbitrary code via a long argument to the (1) rename and (2) realpath parameters.

Vulnerable Systems

Application

  • Freesshd 1.2.1


References

XF - freesshd-rename-realpath-dos(46046)

VUPEN - ADV-2008-2897

SECTRACK - 1021096

BID - 31872

BUGTRAQ - 20081022 freeSSHd (stf - rename) Buffer Overflow Vulnerability

MILW0RM - 6812

MILW0RM - 6800

SREASON - 4515

SECUNIA - 32366


Last Updated: 27 May 2016 10:48:36