CVE-2008-1497 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	9 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:S/C:C/I:C/A:C
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 92%

Vendor	Product	Version
netwin	surgemail	1.8g3:g3
netwin	surgemail	1.9b2:b2
netwin	surgemail	2.0a2:a2
netwin	surgemail	2.0c:c
netwin	surgemail	2.0e:e
netwin	surgemail	2.0g2:g2
netwin	surgemail	2.1c7:c7
netwin	surgemail	2.2a6:a6
netwin	surgemail	2.2c10:c10
netwin	surgemail	2.2g2:g2
netwin	surgemail	2.2g3:g3
netwin	surgemail	3.0a:a
netwin	surgemail	3.0c2:c2
netwin	surgemail	3.2e:e
netwin	surgemail	3.5a:a
netwin	surgemail	3.5b3:b3
netwin	surgemail	3.6d:d
netwin	surgemail	3.6f3:f3
netwin	surgemail	3.6f5:f5
netwin	surgemail	3.6f7:f7
netwin	surgemail	3.7b:b
netwin	surgemail	3.7b3:b3
netwin	surgemail	3.7b5:b5
netwin	surgemail	3.7b6:b6
netwin	surgemail	3.7b7:b7
netwin	surgemail	3.7b8:b8
netwin	surgemail	3.8a:a
netwin	surgemail	3.8b:b
netwin	surgemail	3.8d:d
netwin	surgemail	3.8f:f
netwin	surgemail	3.8f2:f2
netwin	surgemail	3.8f3:f3
netwin	surgemail	3.8i:i
netwin	surgemail	3.8i2:i2
netwin	surgemail	3.8i3:i3
netwin	surgemail	3.8k:k
netwin	surgemail	3.8k2:k2
netwin	surgemail	3.8k3:k3
netwin	surgemail	3.8m:m

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://secunia.com/advisories/29105

http://securityreason.com/securityalert/3774

http://www.infigo.hr/en/in_focus/advisories/INFIGO-2008-03-07

http://www.netwinsite.com/surgemail/help/updates.htm

http://www.securityfocus.com/archive/1/489959/100/0/threaded

http://www.securityfocus.com/bid/28377

https://exchange.xforce.ibmcloud.com/vulnerabilities/41402

http://secunia.com/advisories/29105

http://securityreason.com/securityalert/3774

http://www.infigo.hr/en/in_focus/advisories/INFIGO-2008-03-07

http://www.netwinsite.com/surgemail/help/updates.htm

http://www.securityfocus.com/archive/1/489959/100/0/threaded

http://www.securityfocus.com/bid/28377

https://exchange.xforce.ibmcloud.com/vulnerabilities/41402