CVE-2008-0003

Name of the Vulnerable Software and Affected Versions OpenPegasus CIM management server (tog-pegasus) versions 2.5.1 through 2.6.1

Description The issue is related to a stack-based buffer overflow in the PAMBasicAuthenticator::PAMCallback function, which might allow remote attackers to execute arbitrary code. This could lead to a disruption of confidentiality, integrity, and availability of protected information. The exploitation of this issue can be done remotely.

Recommendations For OpenPegasus CIM management server (tog-pegasus) version 2.5.1, consider updating to a version outside of the affected range. For OpenPegasus CIM management server (tog-pegasus) version 2.6.1, consider updating to a version outside of the affected range. At the moment, there is no information about a newer version that contains a fix for this vulnerability.