CVE-2008-2400 : Unspecified vulnerability in stunnel before 4.23, when running as a service on W

Unspecified vulnerability in stunnel before 4.23, when running as a service on Windows, allows local users to gain privileges via unknown attack vectors.

Published 2008-05-22 13:09:00

Updated 2017-08-08 01:31:01

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2008-2400

Stunnel » Stunnel » Version: 3.4a
cpe:2.3:a:stunnel:stunnel:3.4a:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.7
cpe:2.3:a:stunnel:stunnel:3.7:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.8
cpe:2.3:a:stunnel:stunnel:3.8:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.3
cpe:2.3:a:stunnel:stunnel:3.3:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.14
cpe:2.3:a:stunnel:stunnel:3.14:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.15
cpe:2.3:a:stunnel:stunnel:3.15:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.16
cpe:2.3:a:stunnel:stunnel:3.16:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.21b
cpe:2.3:a:stunnel:stunnel:3.21b:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.21c
cpe:2.3:a:stunnel:stunnel:3.21c:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.9
cpe:2.3:a:stunnel:stunnel:3.9:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.12
cpe:2.3:a:stunnel:stunnel:3.12:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.13
cpe:2.3:a:stunnel:stunnel:3.13:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.21
cpe:2.3:a:stunnel:stunnel:3.21:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.21a
cpe:2.3:a:stunnel:stunnel:3.21a:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.17
cpe:2.3:a:stunnel:stunnel:3.17:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.18
cpe:2.3:a:stunnel:stunnel:3.18:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.22
cpe:2.3:a:stunnel:stunnel:3.22:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.24
cpe:2.3:a:stunnel:stunnel:3.24:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.10
cpe:2.3:a:stunnel:stunnel:3.10:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.11
cpe:2.3:a:stunnel:stunnel:3.11:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.19
cpe:2.3:a:stunnel:stunnel:3.19:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.20
cpe:2.3:a:stunnel:stunnel:3.20:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.04
cpe:2.3:a:stunnel:stunnel:4.04:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.01
cpe:2.3:a:stunnel:stunnel:4.01:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.02
cpe:2.3:a:stunnel:stunnel:4.02:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.03
cpe:2.3:a:stunnel:stunnel:4.03:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.0
cpe:2.3:a:stunnel:stunnel:4.0:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 0.1
cpe:2.3:a:stunnel:stunnel:0.1:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 1.6
cpe:2.3:a:stunnel:stunnel:1.6:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 2.0
cpe:2.3:a:stunnel:stunnel:2.0:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.0 Update B6
cpe:2.3:a:stunnel:stunnel:3.0:b6:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.0 Update B7
cpe:2.3:a:stunnel:stunnel:3.0:b7:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.09
cpe:2.3:a:stunnel:stunnel:4.09:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.10
cpe:2.3:a:stunnel:stunnel:4.10:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.11
cpe:2.3:a:stunnel:stunnel:4.11:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.18
cpe:2.3:a:stunnel:stunnel:4.18:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.19
cpe:2.3:a:stunnel:stunnel:4.19:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 1.2
cpe:2.3:a:stunnel:stunnel:1.2:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 1.3
cpe:2.3:a:stunnel:stunnel:1.3:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.0 Update B1
cpe:2.3:a:stunnel:stunnel:3.0:b1:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.0 Update B2
cpe:2.3:a:stunnel:stunnel:3.0:b2:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.0 Update B3
cpe:2.3:a:stunnel:stunnel:3.0:b3:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.2
cpe:2.3:a:stunnel:stunnel:3.2:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.8 Update P3
cpe:2.3:a:stunnel:stunnel:3.8:p3:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.8 Update P4
cpe:2.3:a:stunnel:stunnel:3.8:p4:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.05
cpe:2.3:a:stunnel:stunnel:4.05:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.06
cpe:2.3:a:stunnel:stunnel:4.06:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.14
cpe:2.3:a:stunnel:stunnel:4.14:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.15
cpe:2.3:a:stunnel:stunnel:4.15:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.22
cpe:2.3:a:stunnel:stunnel:4.22:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 1.0
cpe:2.3:a:stunnel:stunnel:1.0:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 1.1
cpe:2.3:a:stunnel:stunnel:1.1:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 2.1
cpe:2.3:a:stunnel:stunnel:2.1:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.0
cpe:2.3:a:stunnel:stunnel:3.0:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.1
cpe:2.3:a:stunnel:stunnel:3.1:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.8 Update P1
cpe:2.3:a:stunnel:stunnel:3.8:p1:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.8 Update P2
cpe:2.3:a:stunnel:stunnel:3.8:p2:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.12
cpe:2.3:a:stunnel:stunnel:4.12:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.13
cpe:2.3:a:stunnel:stunnel:4.13:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.20
cpe:2.3:a:stunnel:stunnel:4.20:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.21
cpe:2.3:a:stunnel:stunnel:4.21:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 1.4
cpe:2.3:a:stunnel:stunnel:1.4:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 1.5
cpe:2.3:a:stunnel:stunnel:1.5:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.0 Update B4
cpe:2.3:a:stunnel:stunnel:3.0:b4:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.0 Update B5
cpe:2.3:a:stunnel:stunnel:3.0:b5:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.5
cpe:2.3:a:stunnel:stunnel:3.5:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 3.6
cpe:2.3:a:stunnel:stunnel:3.6:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.07
cpe:2.3:a:stunnel:stunnel:4.07:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.08
cpe:2.3:a:stunnel:stunnel:4.08:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.16
cpe:2.3:a:stunnel:stunnel:4.16:*:*:*:*:*:*:*
Matching versions
Stunnel » Stunnel » Version: 4.17
cpe:2.3:a:stunnel:stunnel:4.17:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2008-2400

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 13 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2008-2400

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.2	HIGH	AV:L/AC:L/Au:N/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2008-2400

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2008-2400

Jump to

Vulnerability Details : CVE-2008-2400

Products affected by CVE-2008-2400

Exploit prediction scoring system (EPSS) score for CVE-2008-2400

CVSS scores for CVE-2008-2400

CWE ids for CVE-2008-2400

References for CVE-2008-2400