CVSS: 10.0EPSS: 40%CPEs: 6EXPL: 0CVE-2008-2468
https://notcve.org/view.php?id=CVE-2008-2468
Multiple buffer overflows in the QIP Server Service (aka qipsrvr.exe) in LANDesk Management Suite, Security Suite, and Server Manager 8.8 and earlier allow remote attackers to execute arbitrary code via a crafted heal request, related to the StringToMap and StringSize arguments. Múltiples desbordamientos del búfer en el Servicio Servidor QIP (también conocido como qipsrvr.exe) en LANDesk Management Suite, Security Suite y Server Manager 8.8 y anteriores; permiten a atacantes remotos ejecutar código de su elección a través de una solicitud de cierre manipulada. Está relacionado con los argumentos StringToMap y StringSize. • http://community.landesk.com/support/docs/DOC-3276 http://dvlabs.tippingpoint.com/advisory/TPTI-08-06 http://secunia.com/advisories/31888 http://securityreason.com/securityalert/4269 http://www.kb.cert.org/vuls/id/538011 http://www.securityfocus.com/archive/1/496369/100/0/threaded http://www.securityfocus.com/bid/31193 http://www.securitytracker.com/id?1020888 http://www.vupen.com/english/advisories/2008/2588 https://exchange.xforce.ibmcloud.com/vulnerabilities/45154 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 0CVE-2008-1643
https://notcve.org/view.php?id=CVE-2008-1643
Directory traversal vulnerability in the PXE TFTP Service (PXEMTFTP.exe) in LANDesk Management Suite (LDMS) 8.7 SP5 and earlier and 8.8 allows remote attackers to read arbitrary files via unspecified vectors. Vulnerabilidad de salto de directorio en PXE TFTP Service (PXEMTFTP.exe) de LANDesk Management Suite (LDMS) 8.7 SP5 y anteriores y 8.8 permite a atacantes remotos leer archivos de su elección a través de vectores no especificados. • http://community.landesk.com/support/docs/DOC-2659 http://secunia.com/advisories/29324 http://www.securityfocus.com/bid/28535 http://www.securitytracker.com/id?1019748 http://www.vupen.com/english/advisories/2008/1051/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41562 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •