Unknown
CVE-2008-2357
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)
Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Stack-based buffer overflow in the split_redraw function in split.c in mtr before 0.73, when invoked with the -p (aka —split) option, allows remote attackers to execute arbitrary code via a crafted DNS PTR record. NOTE: it could be argued that this is a vulnerability in the ns_name_ntop function in resolv/ns_name.c in glibc and the proper fix should be in glibc; if so, then this should not be treated as a vulnerability in mtr.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- mtr,
- mtr 0.21,
- mtr 0.22,
- mtr 0.23,
- mtr 0.24,
- mtr 0.25,
- mtr 0.26,
- mtr 0.27,
- mtr 0.28,
- mtr 0.29,
- mtr 0.30,
- mtr 0.31,
- mtr 0.32,
- mtr 0.33,
- mtr 0.34,
- mtr 0.35,
- mtr 0.36,
- mtr 0.37,
- mtr 0.38,
- mtr 0.39,
- mtr 0.40,
- mtr 0.41,
- mtr 0.42,
- mtr 0.43,
- mtr 0.44,
- mtr 0.45,
- mtr 0.46,
- mtr 0.47,
- mtr 0.48,
- mtr 0.49,
- mtr 0.50,
- mtr 0.51,
- mtr 0.52,
- mtr 0.53,
- mtr 0.54,
- mtr 0.55,
- mtr 0.56,
- mtr 0.57,
- mtr 0.58,
- mtr 0.59,
- mtr 0.60,
- mtr 0.61,
- mtr 0.62,
- mtr 0.63,
- mtr 0.64,
- mtr 0.65,
- mtr 0.66,
- mtr 0.67,
- mtr 0.68,
- mtr 0.69,
- mtr 0.70,
- mtr 0.71
References
Advisory
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
