CVE-2008-2468

Multiple buffer overflows in the QIP Server Service (aka qipsrvr.exe) in LANDesk Management Suite, Security Suite, and Server Manager 8.8 and earlier allow remote attackers to execute arbitrary code via a crafted heal request, related to the StringToMap and StringSize arguments.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
certccCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
landesklandesk_management_suite
𝑥
≤ 8.8
landesklandesk_management_suite
8.7
landesklandesk_security_suite
𝑥
≤ 8.8
landesklandesk_security_suite
8.7
landesklandesk_server_manager
𝑥
≤ 8.8
landesklandesk_server_manager
8.7
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://community.landesk.com/support/docs/DOC-3276
http://dvlabs.tippingpoint.com/advisory/TPTI-08-06
http://secunia.com/advisories/31888
http://securityreason.com/securityalert/4269
http://www.kb.cert.org/vuls/id/538011
http://www.securityfocus.com/archive/1/496369/100/0/threaded
http://www.securityfocus.com/bid/31193
http://www.securitytracker.com/id?1020888
http://www.vupen.com/english/advisories/2008/2588
https://exchange.xforce.ibmcloud.com/vulnerabilities/45154
http://community.landesk.com/support/docs/DOC-3276
http://dvlabs.tippingpoint.com/advisory/TPTI-08-06
http://secunia.com/advisories/31888
http://securityreason.com/securityalert/4269
http://www.kb.cert.org/vuls/id/538011
http://www.securityfocus.com/archive/1/496369/100/0/threaded
http://www.securityfocus.com/bid/31193
http://www.securitytracker.com/id?1020888
http://www.vupen.com/english/advisories/2008/2588
https://exchange.xforce.ibmcloud.com/vulnerabilities/45154