Vulnerability Description
Multiple buffer overflows in Getleft.exe in Andres Garcia Getleft 1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) "a" HTML tag; a long src attribute in (2) embed, (3) img, or (4) script tags; (5) a long background attribute in a body tag; and other unspecified tags.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Andres Garcia | Getleft | 1.2 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/32994
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47597
- https://www.exploit-db.com/exploits/7564
- http://www.securityfocus.com/bid/32994
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47597
- https://www.exploit-db.com/exploits/7564
FAQ
What is CVE-2008-6897?
CVE-2008-6897 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple buffer overflows in Getleft.exe in Andres Garcia Getleft 1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) "a" HTML tag; a lon...
How severe is CVE-2008-6897?
CVE-2008-6897 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-6897?
Check the references section above for vendor advisories and patch information. Affected products include: Andres Garcia Getleft.