Heap-based Buffer Overflow in Foxit WAC Server
CVE-2008-0151

Currently unrated

Key Information:

Vendor: Foxit
Status: Wac Server
Vendor: CVE Published:; 9 January 2008

What is CVE-2008-0151?

A heap-based buffer overflow vulnerability exists in Foxit WAC Server versions 2.1.0.910 and 2.0 Build 3503. This flaw can be exploited by remote attackers sending specially crafted Telnet requests with excessively long options, potentially leading to a denial of service by crashing the server. Moreover, this vulnerability could allow execution of arbitrary code, which garners significant concern for system security and integrity.

References

http://securityreason.com/securityalert/3525

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/bid/27142

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/39427

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 9, 2008
Vulnerability Reserved
Jan 8, 2008