CVE-2008-0087 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
microsoft	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 98%

Vendor	Product	Version
microsoft	windows_2000	-
microsoft	windows_server_2003	-
microsoft	windows_server_2003	-
microsoft	windows_vista	-
microsoft	windows_xp	-
microsoft	windows_xp	-
microsoft	windows_xp	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-330 - Use of Insufficiently Random Values
The software uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

References

http://marc.info/?l=bugtraq&m=120845064910729&w=2

http://secunia.com/advisories/29696

http://www.securityfocus.com/archive/1/490575/100/0/threaded

http://www.securityfocus.com/bid/28553

http://www.securitytracker.com/id?1019802

http://www.trusteer.com/docs/windowsresolver.html

http://www.us-cert.gov/cas/techalerts/TA08-099A.html

http://www.vupen.com/english/advisories/2008/1144/references

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-020

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5314

http://marc.info/?l=bugtraq&m=120845064910729&w=2

http://secunia.com/advisories/29696

http://www.securityfocus.com/archive/1/490575/100/0/threaded

http://www.securityfocus.com/bid/28553

http://www.securitytracker.com/id?1019802

http://www.trusteer.com/docs/windowsresolver.html

http://www.us-cert.gov/cas/techalerts/TA08-099A.html

http://www.vupen.com/english/advisories/2008/1144/references

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-020

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5314