CVE-2009-0310

Опубликовано: 18 фев. 2009

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Buffer overflow in SUSE blinux (aka sbl) in SUSE openSUSE 10.3 through 11.0 has unknown impact and attack vectors related to "incoming data and authentication-strings."

Комментарий

Following information confirms LOCAL Access Vector reported in Hyperlink Record 1058524:

http://xforce.iss.net/xforce/xfdb/48797

The SUSE blinux (sbl) package is vulnerable to a buffer overflow. By sending a specially-crafted request, a local attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:opensuse:opensuse:10.3:*:*:*:*:*:*:*

cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00053

Низкий

7.2 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-wfpj-872h-h97h

github

почти 4 года назад