CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-6444

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1350%
EPSS Percentile14.24th
Published2009年3月9日
Last Modified2026年4月23日

Vulnerability Description

Stack-based buffer overflow in CSTransfer.dll in Baidu Hi IM might allow remote attackers to execute arbitrary code via a crafted packet, probably related to an improper length value.

Affected Platforms (CPE)

📦
Baidu

Baidu Hi

All versions

References & Advisories

🔗 http://osvdb.org/51696
🔗 http://www.securityfocus.com/archive/1/496322/100/0/threaded
🔗 http://www.securityfocus.com/bid/31162
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/45117
🔗 http://osvdb.org/51696
🔗 http://www.securityfocus.com/archive/1/496322/100/0/threaded
🔗 http://www.securityfocus.com/bid/31162
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/45117

相关漏洞威胁

CVE-2020-54999.8

Baidu Rust SGX SDK through 1.0.8 has an enclave ID race. There are non-deterministic results in which, sometimes, two global IDs a...

CVE-2007-41059.3

A certain ActiveX control in BaiduBar.dll in Baidu Soba Search Bar 5.4 allows remote attackers to execute arbitrary code via a req...

CVE-2021-443028.8

BaiCloud-cms v2.5.7 was discovered to contain multiple SQL injection vulnerabilities via the tongji and baidu_map parameters in /u...

CVE-2016-106978.1

react-native-baidu-voice-synthesizer is a baidu voice speech synthesizer for react native. react-native-baidu-voice-synthesizer do...