CVE-2008-4052

Published Sep 11, 2008

Last updated 8 years ago

CVSS info 7.2

Overview

Description: Stack-based buffer overflow in SMGSHR.EXE in OpenVMS for Integrity Servers 8.2-1, 8.3, and 8.3-1H1 and OpenVMS ALPHA 7.3-2, 8.2, and 8.3 allows local users to cause a denial of service (crash) or gain privileges via unspecified vectors.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:hp:openvms:7.3-2:*:alpha:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF201B37-9A76-400E-B389-B4E58B3F0356"
          },
          {
            "criteria": "cpe:2.3:o:hp:openvms:8.2:*:alpha:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B97FF973-660F-42E5-9D13-7AFF27547AD5"
          },
          {
            "criteria": "cpe:2.3:o:hp:openvms:8.2-1:*:integrity_servers:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "040668B3-67FC-4F88-9450-2D14A7C8C1C2"
          },
          {
            "criteria": "cpe:2.3:o:hp:openvms:8.3:*:alpha:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE96813C-F81B-46F2-99A4-06A9FEE718FA"
          },
          {
            "criteria": "cpe:2.3:o:hp:openvms:8.3:*:integrity_servers:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E81101E-F282-4877-B6B8-7CD8803507DF"
          },
          {
            "criteria": "cpe:2.3:o:hp:openvms:8.3-1h1:*:integrity_servers:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "358B83DC-0AA6-4896-8686-C282903F284F"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References