ID CVE-2008-4166
Summary Integer overflow in the JavaScript engine in Avant Browser 11.7 Build 9 and earlier allows remote attackers to cause a denial of service (application crash) by attempting to URL encode a string containing many instances of an invalid character.
References
Vulnerable Configurations
  • cpe:2.3:a:avantbrowser:avant_browser:*:build_9:*:*:*:*:*:*
    cpe:2.3:a:avantbrowser:avant_browser:*:build_9:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 11-10-2018 - 20:51)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
refmap via4
bid 31155
bugtraq 20080912 Avant Browser <= 11.7 Build 9 Integer Denial Of Service Exploit
sreason 4284
xf avantbrowser-javascript-dos(45121)
Last major update 11-10-2018 - 20:51
Published 22-09-2008 - 18:34
Last modified 11-10-2018 - 20:51
Back to Top