CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-4508

Stack-based buffer overflow in the file parsing function in Tonec Internet Download Manager, possibly 5.14 and earlier, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted AppleDouble file containing a long string. NOTE: this is probably a different vulnerability than CVE-2005-2210.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.069

EPSS Ranking 90.9%

CVSS Severity

CVSS v2 Score 7.8

References

http://downloads.securityfocus.com/vulnerabilities/exploits/31603.pl
http://www.securityfocus.com/bid/31603
https://exchange.xforce.ibmcloud.com/vulnerabilities/45711
http://downloads.securityfocus.com/vulnerabilities/exploits/31603.pl
http://www.securityfocus.com/bid/31603
https://exchange.xforce.ibmcloud.com/vulnerabilities/45711

Products affected by CVE-2008-4508

Tonec Inc. » Internet Download Manager » Version: Any

cpe:2.3:a:tonec_inc.:internet_download_manager:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-4508

Products

Pricing

Contact Us