CVE-2008-0747

Опубликовано: 13 фев. 2008

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Stack-based buffer overflow in COWON America jetAudio 7.0.5 and earlier allows user-assisted remote attackers to execute arbitrary code via a long URL in a .asx file, a different vulnerability than CVE-2007-5487.

Ссылки

http://secunia.com/advisories/28855
http://securityreason.com/securityalert/3642
http://www.securityfocus.com/archive/1/487806/100/0/threaded
http://www.securityfocus.com/bid/27698
Exploit
http://www.vupen.com/english/advisories/2008/0502
https://www.exploit-db.com/exploits/5085
http://secunia.com/advisories/28855
http://securityreason.com/securityalert/3642
http://www.securityfocus.com/archive/1/487806/100/0/threaded
http://www.securityfocus.com/bid/27698
Exploit
http://www.vupen.com/english/advisories/2008/0502
https://www.exploit-db.com/exploits/5085

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cowon_america:jetaudio_basic:*:*:*:*:*:*:*:*

Версия до 7.0.5 (включая)

EPSS

Процентиль: 96%

0.22318

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-jrwr-2x5x-8hqx

github

почти 4 года назад