CVE-2008-1453

CWE-20Improper Input Validation3 documents3 sources
Severity
8.3HIGH
EPSS
1.3%
top 20.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Windows-nt
Timeline
PublishedJun 12
Latest updateMay 1

Description

The Bluetooth stack in Microsoft Windows XP SP2 and SP3, and Vista Gold and SP1, allows physically proximate attackers to execute arbitrary code via a large series of Service Discovery Protocol (SDP) packets.

CVSS vector

AV:A/AC:L/C:C/I:C/A:CExploitability: 6.5 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: secunia.comPatch: securitytracker.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-rqg3-7g3h-mj55: The Bluetooth stack in Microsoft Windows XP SP2 and SP3, and Vista Gold and SP1, allows physically proximate attackers to execute arbitrary code via a2022-05-01
CVEList
CVE-2008-1453: The Bluetooth stack in Microsoft Windows XP SP2 and SP3, and Vista Gold and SP1, allows physically proximate attackers to execute arbitrary code via a2008-06-12
CVE-2008-1453 (HIGH CVSS 8.3) | The Bluetooth stack in Microsoft Wi | cvebase.io