Strix
26.1K

CVE-2008-1054

UnknownEPSS 7.36%

Last modified

CVE-2008-1054 is a vulnerability of currently unknown severity. Stack-based buffer overflow in the _lib_spawn_user_getpid function in (1) swatch.exe and (2) surgemail.exe in NetWin SurgeMail 38k4 and earlier, and beta 39a, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via an HTTP request with multiple long headers to webmail.exe and unspecified other CGI executables, which triggers an overflow when assigning values to environment variables. NOTE: some of these details are obtained from third party information.. EPSS estimates a 7.36% chance of exploitation in the next 30 days.

Description

Stack-based buffer overflow in the _lib_spawn_user_getpid function in (1) swatch.exe and (2) surgemail.exe in NetWin SurgeMail 38k4 and earlier, and beta 39a, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via an HTTP request with multiple long headers to webmail.exe and unspecified other CGI executables, which triggers an overflow when assigning values to environment variables. NOTE: some of these details are obtained from third party information.

Metrics

EPSS Probability
7.36%

93.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
NetwinSurgemail1.8a
NetwinSurgemail1.8b3
NetwinSurgemail1.8d
NetwinSurgemail1.8e
NetwinSurgemail1.8g3
NetwinSurgemail1.9
NetwinSurgemail1.9b2
NetwinSurgemail2.0a2
NetwinSurgemail2.0c
NetwinSurgemail2.0e
NetwinSurgemail2.0g2
NetwinSurgemail2.1a
NetwinSurgemail2.1c7
NetwinSurgemail2.2a6
NetwinSurgemail2.2c9
NetwinSurgemail2.2c10
NetwinSurgemail2.2g2
NetwinSurgemail2.2g3
NetwinSurgemail3.0a
NetwinSurgemail3.0c2
NetwinSurgemail3.1s
NetwinSurgemail3.8f3
NetwinSurgemail3.8i
NetwinSurgemail3.8i2
NetwinSurgemail3.8i3
NetwinSurgemail38k
NetwinSurgemail38k4

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2008-1054?
Stack-based buffer overflow in the _lib_spawn_user_getpid function in (1) swatch.exe and (2) surgemail.exe in NetWin SurgeMail 38k4 and earlier, and beta 39a, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via an HTTP request with multiple long headers to webmail.exe and unspecified other CGI executables, which triggers an overflow when assigning values to environment variables. NOTE: some of these details are obtained from third party information.
How severe is CVE-2008-1054?
Severity scoring for CVE-2008-1054 is pending analysis. The EPSS model estimates a 7.36% probability of exploitation in the next 30 days.
How do I fix CVE-2008-1054?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2008-1054?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST