CVE-2008-0070

Опубликовано: 31 мар. 2008

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Integer overflow in Orb Networks Orb 2.00.1014 and Winamp Remote BETA allows remote attackers to execute arbitrary code via an RPC request that specifies a large number of array dimensions, which triggers a heap-based buffer overflow.

Ссылки

http://secunia.com/advisories/28203
Vendor Advisory
http://secunia.com/secunia_research/2008-5/advisory/
Vendor Advisory
http://www.securityfocus.com/bid/28431
http://www.vupen.com/english/advisories/2008/0984/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41410
http://secunia.com/advisories/28203
Vendor Advisory
http://secunia.com/secunia_research/2008-5/advisory/
Vendor Advisory
http://www.securityfocus.com/bid/28431
http://www.vupen.com/english/advisories/2008/0984/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41410

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:orb_networks:orb:2.0.1014:*:*:*:*:*:*:*

EPSS

Процентиль: 69%

0.00607

Низкий

4.6 Medium

CVSS2

Дефекты

CWE-189

Связанные уязвимости

GHSA-5rhh-6j7f-44wc

github

почти 4 года назад