CVE-2008-4193
CVE-2008-4193
Vexday Risk Score
60Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 74.6%KEV nãoPoC públicaNuclei —Metasploit simPatch —
Lifecycle
02 Jun 2008Metasploit module available
24 Sep 2008Published on NVD
07 Jul 2010Public PoC
Weaponization speed
651 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
Stack-based buffer overflow in SecurityGateway.dll in Alt-N Technologies SecurityGateway 1.0.1 allows remote attackers to execute arbitrary code via a long username parameter.
Affected products
n/a · n/apublic PoCs found — 3
cve_referencewww.exploit-db.com/exploits/5718unverifiedexploitdbwww.exploit-db.com/exploits/16803unverifiedcve_referencewww.exploit-db.com/exploits/5827unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://files.altn.com/securitygateway/release/relnotes_en.htmhttp://secunia.com/advisories/30497http://securityreason.com/securityalert/4302https://exchange.xforce.ibmcloud.com/vulnerabilities/42769https://www.exploit-db.com/exploits/5718https://www.exploit-db.com/exploits/5827http://www.securityfocus.com/bid/29457http://www.securitytracker.com/id?1020156http://www.vupen.com/english/advisories/2008/1717/references