ID CVE-2009-2539
Summary The Aigo P8860 allows remote attackers to cause a denial of service (memory consumption and browser hang) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
References
Vulnerable Configurations
  • cpe:2.3:h:aigo:aigo_md_p8860:*:*:*:*:*:*:*:*
    cpe:2.3:h:aigo:aigo_md_p8860:*:*:*:*:*:*:*:*
CVSS
Base: 7.8 (as of 10-10-2018 - 19:40)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:C
refmap via4
bugtraq
  • 20090715 Re: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • 20090715 Re:[GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • 20090715 [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
  • 20090716 Re[2]: [GSEC-TZO-44-2009] One bug to rule them all - Firefox, IE, Safari,Opera, Chrome,Seamonkey,iPhone,iPod,Wii,PS3....
exploit-db 9160
misc http://www.g-sec.lu/one-bug-to-rule-them-all.html
xf aigop8860-integer-value-dos(52873)
Last major update 10-10-2018 - 19:40
Published 20-07-2009 - 18:30
Last modified 10-10-2018 - 19:40
Back to Top