Vulnerability CVE-2008-2158


Published: 2008-05-29   Modified: 2012-02-12

Description:
Multiple stack-based buffer overflows in the Command Line Interface process in the Server Agent in EMC AlphaStor 3.1 SP1 for Windows allow remote attackers to execute arbitrary code via crafted TCP packets to port 41025.

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Emc corporation -> Alphastor 

 References:
http://xforce.iss.net/xforce/xfdb/42669
http://www.vupen.com/english/advisories/2008/1670
http://www.securityfocus.com/bid/29399
http://securitytracker.com/id?1020115
http://secunia.com/advisories/30410
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=702

Copyright 2021, cxsecurity.com

 

Back to Top