CVE-2008-2709

CWE-119Buffer Overflow4 documents4 sources
Severity
4.7MEDIUM
EPSS
0.0%
top 85.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM OS 400
Timeline
PublishedJun 16
Latest updateMay 1

Description

Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of service (task halt and main storage dump) via unspecified vectors involving the running of diagnostics on a modem port. NOTE: there might be limited attack scenarios.

CVSS vector

AV:L/AC:M/C:N/I:N/A:CExploitability: 3.4 | Impact: 6.9

Affected Packages1 packages

NVDibm/os_400v5r4m0, v5r4m5, v6r1m0+2

🔴Vulnerability Details

2
GHSA
GHSA-vq56-9vcf-xwq4: Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of2022-05-01
CVEList
CVE-2008-2709: Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of2008-06-16

💥Exploits & PoCs

1
Exploit-DB
Microsoft Windows - InternalOpenColorProfile Heap Overflow (PoC) (MS08-046)2008-10-12
CVE-2008-2709 (MEDIUM CVSS 4.7) | Buffer overflow in the BrSmRcvAndCh | cvebase.io