ID CVE-2008-5159
Summary Integer overflow in the remote administration protocol processing in Client Software WinCom LPD Total 3.0.2.623 and earlier allows remote attackers to cause a denial of service (crash) via a large string length argument, which triggers memory corruption.
References
Vulnerable Configurations
  • cpe:2.3:a:clientsoftware:wincome_mpd_total:*:*:*:*:*:*:*:*
    cpe:2.3:a:clientsoftware:wincome_mpd_total:*:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 11-10-2018 - 20:54)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 27614
bugtraq 20080204 Multiple vulnerabilities in WinCom LPD Total 3.0.2.623
misc
secunia 28763
sreason 4610
vupen ADV-2008-0410
Last major update 11-10-2018 - 20:54
Published 18-11-2008 - 21:30
Last modified 11-10-2018 - 20:54
Back to Top