CVE-2008-4391 — HIGH (9.3) — White Hats Nepal

Q: How severe is CVE-2008-4391?

CVE-2008-4391 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2008-4391?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Wvc54Gc.

Vulnerability Description

Stack-based buffer overflow in the SetSource method in the NetCamPlayerWeb11gv2 ActiveX control in NetCamPlayerWeb11gv2.ocx on the Cisco Linksys WVC54GC wireless video camera before firmware 1.25 allows remote attackers to execute arbitrary code via long invalid arguments.

CVSS Score

9.3

HIGH

AV:N/AC:M/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Cisco	Wvc54Gc	<= 1.19

Related Weaknesses (CWE)

CWE-119

References

http://secunia.com/advisories/33032
http://www.kb.cert.org/vuls/id/639345PatchUS Government Resource
http://www.kb.cert.org/vuls/id/WDON-7M2U52US Government Resource
http://www.securityfocus.com/bid/32665
http://secunia.com/advisories/33032
http://www.kb.cert.org/vuls/id/639345PatchUS Government Resource
http://www.kb.cert.org/vuls/id/WDON-7M2U52US Government Resource
http://www.securityfocus.com/bid/32665

FAQ

What is CVE-2008-4391?

CVE-2008-4391 is a vulnerability with a CVSS score of 9.3 (HIGH). Stack-based buffer overflow in the SetSource method in the NetCamPlayerWeb11gv2 ActiveX control in NetCamPlayerWeb11gv2.ocx on the Cisco Linksys WVC54GC wireless video camera before firmware 1.25 allo...

How severe is CVE-2008-4391?

CVE-2008-4391 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-4391?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Wvc54Gc.