CVE-2008-6897

Andres Garcia Getleft - Memory Corruption

Title source: rule

Description

Multiple buffer overflows in Getleft.exe in Andres Garcia Getleft 1.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) "a" HTML tag; a long src attribute in (2) embed, (3) img, or (4) script tags; (5) a long background attribute in a body tag; and other unspecified tags.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Koshi · perldosmultiple

https://www.exploit-db.com/exploits/7564

View Code ZIP pw:eip

References (3)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7564

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/47597

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/32994

Scores

EPSS 0.2333

EPSS Percentile 96.0%

Details

CWE

CWE-119

Status published

Products (1)

andres_garcia/getleft 1.2

Published Aug 05, 2009

Tracked Since Feb 18, 2026