NVD

Id
48164  
Name
CVE-2009-0849  
Description
Stack-based buffer overflow in the DtbClsLogin function in NovaStor NovaNET 12 allows remote attackers to (1) execute arbitrary code on Linux platforms via a long username field during backup domain authentication, related to libnnlindtb.so; or (2) cause a denial of service (daemon crash) on Windows platforms via a long username field during backup domain authentication, related to nnwindtb.dll. NOTE: some of these details are obtained from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2009-03-09  
Modified Date
2009-03-10  
Seq
2009-0849  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
242047 48164 CVE-2009-0849 http://www.insight-tech.org/index.php?p=NovaNET-12-Remote-Buffer-Oveflow  View
242048 48164 CVE-2009-0849 33954  View
242049 48164 CVE-2009-0849 novanet-dtbclslogin-bo(49074)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
43503 JVNDB-2009-004510 NovaStor NovaNET の DtbClsLogin 関数におけるスタックベースのバッファオーバーフローの脆弱性 NovaStor NovaNET の DtbClsLogin 関数には、libnnlindtb.so、nnwindtb.dll に関する処理に不備があるため、スタックベースのバッファオーバーフローの脆弱性が存在します。 CVE-2009-0849 38280 CVE-2009-0849 48164 7.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-004510.html 2009-03-09 2012-09-25 View