Vulnerability Details CVE-2014-2206
Stack-based buffer overflow in GetGo Download Manager 4.9.0.1982, 4.8.2.1346, 4.4.5.502, and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long HTTP Response Header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.766
EPSS Ranking 98.9%
CVSS Severity
CVSS v2 Score 10.0
Products affected by CVE-2014-2206
-
cpe:2.3:a:getgosoft:getgo_download_manager:2.50
-
cpe:2.3:a:getgosoft:getgo_download_manager:2.51
-
cpe:2.3:a:getgosoft:getgo_download_manager:2.52
-
cpe:2.3:a:getgosoft:getgo_download_manager:2.53
-
cpe:2.3:a:getgosoft:getgo_download_manager:2.54
-
cpe:2.3:a:getgosoft:getgo_download_manager:2.55
-
cpe:2.3:a:getgosoft:getgo_download_manager:3.00
-
cpe:2.3:a:getgosoft:getgo_download_manager:3.01
-
cpe:2.3:a:getgosoft:getgo_download_manager:3.50
-
cpe:2.3:a:getgosoft:getgo_download_manager:3.60
-
cpe:2.3:a:getgosoft:getgo_download_manager:3.70
-
cpe:2.3:a:getgosoft:getgo_download_manager:3.71
-
cpe:2.3:a:getgosoft:getgo_download_manager:3.80
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.0
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.0.1.95
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.1.0.179
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.1.1.201
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.2.0.287
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.2.1.309
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.2.2.350
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.3.0.382
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.4.1.435
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.4.5.502
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.8.2.1346
-
cpe:2.3:a:getgosoft:getgo_download_manager:4.9.0.1982