CVE-2008-7173

Sažetak

The Jura Internet Connection Kit for the Jura Impressa F90 coffee maker does not properly restrict access to privileged functions, which allows remote attackers to cause a denial of service (physical damage), modify coffee settings, and possibly execute code via a crafted request. NOTE: this issue is being included in CVE because the denial of service may include financial loss or water damage.

Reference

http://attrition.org/pipermail/vim/2008-June/002002.html
http://news.cnet.com/8301-10784_3-9970757-7.html
http://osvdb.org/46407
http://www.securityfocus.com/archive/1/493387/100/0/threaded
http://www.securityfocus.com/archive/1/493433/100/0/threaded
http://www.securityfocus.com/archive/1/493440/100/0/threaded
http://www.securityfocus.com/bid/29767

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

11-10-2018 - 20:58

Objavljeno

08-09-2009 - 10:30