CVE-2008-3667
Published Aug 13, 2008
Last updated 7 years ago
Overview
- Description
- Stack-based buffer overflow in Maxthon Browser 2.0 and earlier allows remote attackers to execute arbitrary code via a long Content-type HTTP header.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:maxthon:maxthon_browser:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "00F222DA-D03C-49FD-8855-543E9E75FD6B",
"versionEndIncluding": "2.0"
},
{
"criteria": "cpe:2.3:a:maxthon:maxthon_browser:1.1.39:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "17633C0B-AB02-4889-B3A4-422F6965F71D"
},
{
"criteria": "cpe:2.3:a:maxthon:maxthon_browser:1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "119D2605-46D9-46F6-8F0B-97B39B587918"
},
{
"criteria": "cpe:2.3:a:maxthon:maxthon_browser:1.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5311CC31-08B8-4935-9E76-8ADB6E0A620B"
},
{
"criteria": "cpe:2.3:a:maxthon:maxthon_browser:1.6.3.80:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56BD7739-4D7B-4C70-ABD8-499287703188"
}
],
"operator": "OR"
}
]
}
]