FKIE_CVE-2008-2468

Vulnerability from fkie_nvd - Published: 2008-09-18 15:04 - Updated: 2025-04-09 00:30
Severity ?
Summary
Multiple buffer overflows in the QIP Server Service (aka qipsrvr.exe) in LANDesk Management Suite, Security Suite, and Server Manager 8.8 and earlier allow remote attackers to execute arbitrary code via a crafted heal request, related to the StringToMap and StringSize arguments.
References
cret@cert.orghttp://community.landesk.com/support/docs/DOC-3276Patch
cret@cert.orghttp://dvlabs.tippingpoint.com/advisory/TPTI-08-06
cret@cert.orghttp://secunia.com/advisories/31888
cret@cert.orghttp://securityreason.com/securityalert/4269
cret@cert.orghttp://www.kb.cert.org/vuls/id/538011US Government Resource
cret@cert.orghttp://www.securityfocus.com/archive/1/496369/100/0/threaded
cret@cert.orghttp://www.securityfocus.com/bid/31193Patch
cret@cert.orghttp://www.securitytracker.com/id?1020888
cret@cert.orghttp://www.vupen.com/english/advisories/2008/2588
cret@cert.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/45154
af854a3a-2127-422b-91ae-364da2661108http://community.landesk.com/support/docs/DOC-3276Patch
af854a3a-2127-422b-91ae-364da2661108http://dvlabs.tippingpoint.com/advisory/TPTI-08-06
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/31888
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/4269
af854a3a-2127-422b-91ae-364da2661108http://www.kb.cert.org/vuls/id/538011US Government Resource
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/496369/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/31193Patch
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1020888
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/2588
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/45154
Impacted products
Vendor Product Version
landesk landesk_management_suite *
landesk landesk_management_suite 8.7
landesk landesk_security_suite *
landesk landesk_security_suite 8.7
landesk landesk_server_manager *
landesk landesk_server_manager 8.7
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:landesk:landesk_management_suite:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AAACB75E-6E9E-47E9-95C8-7C5431680EF3",
              "versionEndIncluding": "8.8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:landesk:landesk_management_suite:8.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "76A064EF-94BD-44FC-BA24-1D09FCBA950E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:landesk:landesk_security_suite:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0874ECC6-1DE7-4010-8203-DB7EA0DEC2F1",
              "versionEndIncluding": "8.8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:landesk:landesk_security_suite:8.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "9C4236A8-403A-4946-A819-E60E9F743025",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:landesk:landesk_server_manager:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4B3DDEF2-9868-4CF8-AE6F-4157490E1CE5",
              "versionEndIncluding": "8.8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:landesk:landesk_server_manager:8.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "6E82F56E-16A2-4567-A11F-281EAF65FEB5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple buffer overflows in the QIP Server Service (aka qipsrvr.exe) in LANDesk Management Suite, Security Suite, and Server Manager 8.8 and earlier allow remote attackers to execute arbitrary code via a crafted heal request, related to the StringToMap and StringSize arguments."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples desbordamientos del b\u00fafer en el Servicio Servidor QIP (tambi\u00e9n conocido como qipsrvr.exe) en LANDesk Management Suite, Security Suite y Server Manager 8.8 y anteriores; permiten a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de una solicitud de cierre manipulada. Est\u00e1 relacionado con los argumentos StringToMap y StringSize."
    }
  ],
  "id": "CVE-2008-2468",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2008-09-18T15:04:27.187",
  "references": [
    {
      "source": "cret@cert.org",
      "tags": [
        "Patch"
      ],
      "url": "http://community.landesk.com/support/docs/DOC-3276"
    },
    {
      "source": "cret@cert.org",
      "url": "http://dvlabs.tippingpoint.com/advisory/TPTI-08-06"
    },
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/31888"
    },
    {
      "source": "cret@cert.org",
      "url": "http://securityreason.com/securityalert/4269"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/538011"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.securityfocus.com/archive/1/496369/100/0/threaded"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/31193"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.securitytracker.com/id?1020888"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.vupen.com/english/advisories/2008/2588"
    },
    {
      "source": "cret@cert.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45154"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://community.landesk.com/support/docs/DOC-3276"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://dvlabs.tippingpoint.com/advisory/TPTI-08-06"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/31888"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/4269"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/538011"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/496369/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/31193"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1020888"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/2588"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45154"
    }
  ],
  "sourceIdentifier": "cret@cert.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.