CVE-2019-8961 · CVEKit

cve.orgen

352 chars

A Denial of Service vulnerability related to stack exhaustion has been identified in FlexNet Publisher lmadmin.exe 11.16.2. Because the message reading function calls itself recursively given a certain condition in the received message, an unauthenticated remote attacker can repeatedly send messages of that type to cause a stack exhaustion condition.

NVDen

352 chars

A Denial of Service vulnerability related to stack exhaustion has been identified in FlexNet Publisher lmadmin.exe 11.16.2. Because the message reading function calls itself recursively given a certain condition in the received message, an unauthenticated remote attacker can repeatedly send messages of that type to cause a stack exhaustion condition.

NVDes

442 chars

Se ha identificado una vulnerabilidad de denegación de servicio relacionada con un agotamiento de pila (stack) en lmadmin.exe de FlexNet Publisher versión 11.16.2. Dado que la función de lectura de mensajes se llama a sí misma de forma recursiva dada una determinada condición en el mensaje recibido, un atacante remoto no autenticado puede enviar mensajes repetidas veces de ese tipo para causar una condición de agotamiento de pila (stack).

CVSS metrics across sources

2

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H