CVE-2008-5409

Опубликовано: 10 дек. 2008

Источник: nvd

CVSS2: 9.3

EPSS Средний

Описание

Unspecified vulnerability in the pdf.xmd module in (1) BitDefender Free Edition 10 and Antivirus Standard 10, (2) BullGuard Internet Security 8.5, and (3) Software602 Groupware Server 6.0.08.1118 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PDF file, possibly related to included compressed streams that were processed with the ASCIIHexDecode filter. NOTE: some of these details are obtained from third party information.

Ссылки

http://milw0rm.com/sploits/2008-BitDefenderDOS.zip
http://osvdb.org/50010
http://osvdb.org/50103
http://osvdb.org/50205
http://secunia.com/advisories/27805
Vendor Advisory
http://secunia.com/advisories/32789
Vendor Advisory
http://secunia.com/advisories/32814
Vendor Advisory
http://www.securityfocus.com/bid/32396
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/46750
https://www.exploit-db.com/exploits/7178
http://milw0rm.com/sploits/2008-BitDefenderDOS.zip
http://osvdb.org/50010
http://osvdb.org/50103
http://osvdb.org/50205
http://secunia.com/advisories/27805
Vendor Advisory
http://secunia.com/advisories/32789
Vendor Advisory
http://secunia.com/advisories/32814
Vendor Advisory
http://www.securityfocus.com/bid/32396
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/46750
https://www.exploit-db.com/exploits/7178

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:bitdefender:antivirus:10:_nil_:standard:*:*:*:*:*

cpe:2.3:a:bitdefender:bitdefender:10:_nil_:free_edition:*:*:*:*:*

cpe:2.3:a:bullguard:internet_security:8.5:*:*:*:*:*:*:*

cpe:2.3:a:software602:groupware_server:6.0.08.1118:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.23954

Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-w5c9-rfx7-37rh

github

больше 3 лет назад