CyberSec.Space Logo
Back to CVE Browser

CVE-2008-7126

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1110%
EPSS Percentile15.78th
PublishedAug 31, 2009
Last ModifiedApr 23, 2026

Vulnerability Description

Integer overflow in osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet with a large string length value to UDP port 14000, which triggers a heap-based buffer overflow.

Affected Platforms (CPE)

πŸ“¦
Microfocus

Visibroker

<= 08.00.00.c1.03

References & Advisories

πŸ”— http://aluigi.altervista.org/adv/visibroken-adv.txt
πŸ”— http://archives.neohapsis.com/archives/fulldisclosure/2008-03/0018.html
πŸ”— http://osvdb.org/43057
πŸ”— http://secunia.com/advisories/29213
πŸ”— http://www.securityfocus.com/bid/28084
πŸ”— http://www.vupen.com/english/advisories/2008/0748/references
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/40978
πŸ”— http://aluigi.altervista.org/adv/visibroken-adv.txt

Related Vulnerabilities

CVE-2017-92829.8

An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micr...

CVE-2017-92839.8

An out-of-bounds read (CWE-125) vulnerability exists in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerabili...

CVE-2017-92817.5

An integer overflow (CWE-190) potentially causing an out-of-bounds read (CWE-125) vulnerability in Micro Focus VisiBroker 8.5 can ...

CVE-2008-71275.0

osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows remote attackers to cause a denial of service (cra...