Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv2

CVE-2008-4508

Published: 09/10/2008 Updated: 08/08/2017
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 785
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Summary

Stack-based buffer overflow in the file parsing function in Tonec Internet Download Manager, possibly 5.14 and previous versions, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a crafted AppleDouble file containing a long string. NOTE: this is probably a different vulnerability than CVE-2005-2210.

Vulnerable Product Search on Vulmon Subscribe to Product

tonec inc. internet download manager

Exploits

Exploit DB: Internet Download Manager 4.0.5 - File Parsing Buffer Overflow
source: wwwsecurityfocuscom/bid/31603/info Internet Download Manager (IDM) is prone to a remote buffer-overflow vulnerability because the application fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer An attacker may exploit this issue to execute arbitrary code within the context of the affect ...

References

CWE-119http://www.securityfocus.com/bid/31603http://downloads.securityfocus.com/vulnerabilities/exploits/31603.plhttps://exchange.xforce.ibmcloud.com/vulnerabilities/45711https://nvd.nist.govhttps://www.exploit-db.com/exploits/32465/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223CVE-2024-0044information disclosureCVE-2024-35753HTML injectionCVE-2024-21306CVE-2024-35733SQL injectionCVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook