admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-07-29 05:56:17 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2008/CVE-2008-38xx/CVE-2008-3864.json
cad-safe-bot 9d8babeec3 Auto-Update: 2024-07-14T02:00:17.787041+00:00
2024-07-14 02:06:08 +00:00

143 lines
4.5 KiB
JSON
Raw Blame History

{
"id": "CVE-2008-3864",
"sourceIdentifier": "PSIRT-CNA@flexerasoftware.com",
"published": "2009-01-21T20:30:00.187",
"lastModified": "2018-10-11T20:50:07.200",
"vulnStatus": "Modified",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The ApiThread function in the firewall service (aka TmPfw.exe) in Trend Micro Network Security Component (NSC) modules, as used in Trend Micro OfficeScan 8.0 SP1 Patch 1 and Internet Security 2007 and 2008 17.0.1224, allows remote attackers to cause a denial of service (service crash) via a packet with a large value in an unspecified size field."
},
{
"lang": "es",
"value": "La funci\u00f3n ApiThread en el servicio de cortafuegos (tambi\u00e9n conocido como TmPfw.exe) en los m\u00f3dulos Trend Micro Network Security Component (NSC), del modo que se usan en Trend Micro OfficeScan 8.0 SP1 Patch 1 e Internet Security 2007 y 2008 17.0.1224, permite a atacantes remotos provocar una denegaci\u00f3n de sevicio (ca\u00edda de aplicaci\u00f3n) mediante un paquete con un valor grande en un campo de tama\u00f1o no especificado."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:trend_micro:internet_security_2007:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C374395B-80B1-4FBA-88F6-1C155900E4DB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:trend_micro:internet_security_2008:17.0.1224:*:*:*:*:*:*:*",
"matchCriteriaId": "F794E937-C7EC-423B-AF79-F7C214114BCF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:trend_micro:officescan:8.0:sp1:*:*:*:*:*:*",
"matchCriteriaId": "9A220318-78FB-4D3B-968D-7B0BF3BB1969"
}
]
}
]
}
],
"references": [
{
"url": "http://secunia.com/advisories/31160",
"source": "PSIRT-CNA@flexerasoftware.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://secunia.com/advisories/33609",
"source": "PSIRT-CNA@flexerasoftware.com",
"tags": [
"Patch",
"Vendor Advisory"
]
},
{
"url": "http://secunia.com/secunia_research/2008-42/",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://securityreason.com/securityalert/4937",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.securityfocus.com/archive/1/500195/100/0/threaded",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.securityfocus.com/bid/33358",
"source": "PSIRT-CNA@flexerasoftware.com",
"tags": [
"Patch"
]
},
{
"url": "http://www.securitytracker.com/id?1021614",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.securitytracker.com/id?1021615",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.trendmicro.com/ftp/documentation/readme/OSCE8.0_SP1_Patch1_CriticalPatch_3191_Readme.txt",
"source": "PSIRT-CNA@flexerasoftware.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.vupen.com/english/advisories/2009/0191",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48106",
"source": "PSIRT-CNA@flexerasoftware.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink