NVD

Id
5057  
Name
CVE-2008-5279  
Description
The Local ZIM Server (zcs.exe) in Zilab Chat and Instant Messaging (ZIM) Server 2.1 and earlier allow remote attackers to execute arbitrary code via (1) heap-based buffer overflows involving multiple vectors including a long room name and a long source account, and (2) a stack-based buffer overflow with a long username in an information request. NOTE: some of these details are obtained from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2008-11-28  
Modified Date
2011-03-07  
Seq
2008-5279  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
31604 5057 CVE-2008-5279 http://aluigi.altervista.org/adv/zilabzcsx-adv.txt  View
31605 5057 CVE-2008-5279 http://aluigi.org/poc/zilabzcsx.zip  View
31606 5057 CVE-2008-5279 27940  View
31607 5057 CVE-2008-5279 ADV-2008-0664  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
51195 JVNDB-2008-006505 ZIP Server の Local ZIM Server における任意のコードを実行される脆弱性 Zilab Chat and Instant Messaging (ZIP) Server の Local ZIM Server (zcs.exe) には、任意のコードを実行される脆弱性が存在します。 CVE-2008-5279 35392 CVE-2008-5279 5057 10 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-006505.html 2008-11-28 2012-12-20 View