CVE-2011-4057 - Wibu-Systems AG CodeMeter Runtime 4.30c, 4.10b, and possibly other versions before 4.40 allows remot

CVE-2011-4057

Summary

Wibu-Systems AG CodeMeter Runtime 4.30c, 4.10b, and possibly other versions before 4.40 allows remote attackers to cause a denial of service (CodeMeter.exe crash) via certain crafted packets to TCP port 22350.

References

Vulnerable Configurations

cpe:2.3:a:wibu:codemeter_runtime:4.10b:*:*:*:*:*:*:*
cpe:2.3:a:wibu:codemeter_runtime:4.10b:*:*:*:*:*:*:*
cpe:2.3:a:wibu:codemeter_runtime:4.20a:*:*:*:*:*:*:*
cpe:2.3:a:wibu:codemeter_runtime:4.20a:*:*:*:*:*:*:*
cpe:2.3:a:wibu:codemeter_runtime:4.30c:*:*:*:*:*:*:*
cpe:2.3:a:wibu:codemeter_runtime:4.30c:*:*:*:*:*:*:*
cpe:2.3:a:wibu:codemeter_runtime:*:*:*:*:*:*:*:*
cpe:2.3:a:wibu:codemeter_runtime:*:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 16-01-2012 - 05:00)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	51382
cert-vn	VU#659515
confirm	http://www.kb.cert.org/vuls/id/MAPG-8MYNFL
jvn	JVN#78901873
jvndb	JVNDB-2012-000003
osvdb	78223
secunia	47497

Last major update

16-01-2012 - 05:00

Published

13-01-2012 - 18:55

Last modified

16-01-2012 - 05:00