Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5282

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-5282
Last Modified 07 Mar 2011 10:14:18
Published 28 Nov 2008 09:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5282

Summary

Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0.1 allow remote attackers to execute arbitrary code via (1) a link with a long HREF attribute, and (2) a DIV tag with a long id attribute.

Vulnerable Systems

Application

  • W3c Amaya Web Browser 10.0.1


References

VUPEN - ADV-2008-3255

BID - 32442

BUGTRAQ - 20081124 Amaya (id) Remote Stack Overflow Vulnerability

BUGTRAQ - 20081124 Amaya (URL Bar) Remote Stack Overflow Vulnerability

MISC - http://www.bmgsec.com.au/advisory/41/

MISC - http://www.bmgsec.com.au/advisory/40/

SREASON - 4657

SECUNIA - 32848

OSVDB - 50283

OSVDB - 50282


Last Updated: 27 May 2016 10:48:46