CVE-2009-2582
Published Jul 23, 2009
Last updated 6 years ago
Overview
- Description
- Stack-based buffer overflow in manager.exe in Akamai Download Manager (aka DLM or dlmanager) before 2.2.4.8 allows remote web servers to execute arbitrary code via a malformed HTTP response during a Redswoosh download, a different vulnerability than CVE-2007-1891 and CVE-2007-1892.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:akamai_technologies:download_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "409FC315-CB14-4513-BC7A-7AC4E1366CC8",
"versionEndIncluding": "2.2.4.3"
},
{
"criteria": "cpe:2.3:a:akamai_technologies:download_manager:2.0.4.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "54E2F00F-72B4-430C-B13F-8248C049C582"
},
{
"criteria": "cpe:2.3:a:akamai_technologies:download_manager:2.2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3CEC0560-A48B-4904-9A0F-D43098C62A8E"
},
{
"criteria": "cpe:2.3:a:akamai_technologies:download_manager:2.2.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5F32F96A-0597-4114-A444-1308A9D916E6"
},
{
"criteria": "cpe:2.3:a:akamai_technologies:download_manager:2.2.3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "945F5C3E-83A6-46E3-B8F5-CF2C4F3A9427"
},
{
"criteria": "cpe:2.3:a:akamai_technologies:download_manager:2.2.3.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12AF7DEE-67C5-45F8-8F74-8B4B2D1199FC"
}
],
"operator": "OR"
}
]
}
]