CVE-2008-2437 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	10 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:N/C:C/I:C/A:C
flexera	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 96%

Vendor	Product	Version
trend_micro	client-server-messaging_security	2.0
trend_micro	client-server-messaging_security	3.0
trend_micro	client-server-messaging_security	3.5
trend_micro	client-server-messaging_security	3.6
trend_micro	officescan	7.0
trend_micro	officescan	7.3
trend_micro	officescan	7.3:patch_4
trend_micro	officescan	8.0
trend_micro	officescan	8.0:sp1

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://secunia.com/advisories/31342

http://secunia.com/secunia_research/2008-35/

http://securityreason.com/securityalert/4263

http://www.securityfocus.com/archive/1/496281/100/0/threaded

http://www.securityfocus.com/bid/31139

http://www.securitytracker.com/id?1020860

http://www.trendmicro.com/ftp/documentation/readme/CSM_3.6_OSCE_7.6_Win_EN_CriticalPatch_B1195_readme.txt

http://www.trendmicro.com/ftp/documentation/readme/OSCE_7.3_Win_EN_CriticalPatch_B1367_readme.txt

http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Patch1_Win_EN_CriticalPatch_B3060_readme.txt

http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2424_readme.txt

http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_Win_EN_CriticalPatch_B1361_readme.txt

http://www.vupen.com/english/advisories/2008/2555

https://exchange.xforce.ibmcloud.com/vulnerabilities/45072

http://secunia.com/advisories/31342

http://secunia.com/secunia_research/2008-35/

http://securityreason.com/securityalert/4263

http://www.securityfocus.com/archive/1/496281/100/0/threaded

http://www.securityfocus.com/bid/31139

http://www.securitytracker.com/id?1020860

http://www.trendmicro.com/ftp/documentation/readme/CSM_3.6_OSCE_7.6_Win_EN_CriticalPatch_B1195_readme.txt

http://www.trendmicro.com/ftp/documentation/readme/OSCE_7.3_Win_EN_CriticalPatch_B1367_readme.txt

http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Patch1_Win_EN_CriticalPatch_B3060_readme.txt

http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_SP1_Win_EN_CriticalPatch_B2424_readme.txt

http://www.trendmicro.com/ftp/documentation/readme/OSCE_8.0_Win_EN_CriticalPatch_B1361_readme.txt

http://www.vupen.com/english/advisories/2008/2555

https://exchange.xforce.ibmcloud.com/vulnerabilities/45072