CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-7126

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1110%
EPSS Percentile15.78th
Published2009年8月31日
Last Modified2026年4月23日

Vulnerability Description

Integer overflow in osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted packet with a large string length value to UDP port 14000, which triggers a heap-based buffer overflow.

Affected Platforms (CPE)

📦
Microfocus

Visibroker

<= 08.00.00.c1.03

References & Advisories

🔗 http://aluigi.altervista.org/adv/visibroken-adv.txt
🔗 http://archives.neohapsis.com/archives/fulldisclosure/2008-03/0018.html
🔗 http://osvdb.org/43057
🔗 http://secunia.com/advisories/29213
🔗 http://www.securityfocus.com/bid/28084
🔗 http://www.vupen.com/english/advisories/2008/0748/references
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/40978
🔗 http://aluigi.altervista.org/adv/visibroken-adv.txt

相关漏洞威胁

CVE-2017-92829.8

An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micr...

CVE-2017-92839.8

An out-of-bounds read (CWE-125) vulnerability exists in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerabili...

CVE-2017-92817.5

An integer overflow (CWE-190) potentially causing an out-of-bounds read (CWE-125) vulnerability in Micro Focus VisiBroker 8.5 can ...

CVE-2008-71275.0

osagent.exe in Borland VisiBroker Smart Agent 08.00.00.C1.03 and earlier allows remote attackers to cause a denial of service (cra...

CVE-2008-7126 Detail & Impact Analysis | CVSS 10.0 (CRITICAL) | Cyber-Sec.Space | Cyber-Sec.Space