Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2008-3641

Date: October 10, 2008

The Hewlett-Packard Graphics Language (HPGL) filter in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via crafted pen width and pen color opcodes that overwrite arbitrary memory.

Severity Score

Related Resources (40)

https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00331.html
http://secunia.com/advisories/32331
http://www.zerodayinitiative.com/advisories/ZDI-08-067
http://secunia.com/advisories/33568
https://access.redhat.com/security/cve/CVE-2008-3641
http://secunia.com/advisories/33085
http://secunia.com/advisories/32292
http://www.securitytracker.com/id?1021031
http://www.gentoo.org/security/en/glsa/glsa-200812-11.xml
http://secunia.com/advisories/32316
http://www.mandriva.com/security/advisories?name=MDVSA-2008:211
http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00006.html
http://support.apple.com/kb/HT3216
http://support.avaya.com/elmodocs2/security/ASA-2008-470.htm
https://nvd.nist.gov/vuln/detail/CVE-2008-3641
http://www.vupen.com/english/advisories/2009/1568
http://www.vupen.com/english/advisories/2008/2782
http://www.vupen.com/english/advisories/2008/2780
https://exchange.xforce.ibmcloud.com/vulnerabilities/45779
http://secunia.com/advisories/32222
http://secunia.com/advisories/33111
http://sunsolve.sun.com/search/document.do?assetkey=1-26-261088-1
http://secunia.com/advisories/32284
http://secunia.com/advisories/32084
http://secunia.com/advisories/32226
https://usn.ubuntu.com/656-1/
http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00380.html
http://www.cups.org/str.php?L2911
http://www.securityfocus.com/bid/31681
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9666
http://www.debian.org/security/2008/dsa-1656
http://www.vupen.com/english/advisories/2008/3401
http://lists.opensuse.org/opensuse-security-announce/2009-01/msg00004.html
http://www.securityfocus.com/archive/1/497221/100/0/threaded
http://www.cups.org/articles.php?L575
http://www.securityfocus.com/bid/31688
http://www.redhat.com/support/errata/RHSA-2008-0937.html
https://people.canonical.com/~ubuntu-security/cve/CVE-2008-3641
https://www.mend.io/vulnerability-database/CVE-2008-3641

Severity Score

Weakness Type (CWE)

Resource Management Errors

CWE-399

CVSS v3.1

Base Score:
Attack Vector (AV): NETWORK
Attack Complexity (AC): LOW
Privileges Required (PR): NONE
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

CVSS v2

Base Score:
Access Vector (AV): NETWORK
Access Complexity (AC): LOW
Authentication (AU): NONE
Confidentiality (C): COMPLETE
Integrity (I): COMPLETE
Availability (A): COMPLETE
Additional information:

Do you need more information?

Contact Us