Vulnerabilities > CVE-2008-4166 - Numeric Errors vulnerability in Avantbrowser Avant Browser
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Integer overflow in the JavaScript engine in Avant Browser 11.7 Build 9 and earlier allows remote attackers to cause a denial of service (application crash) by attempting to URL encode a string containing many instances of an invalid character.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Avant Browser 11.7 Build 9 JavaScript Engine Integer Overflow Vulnerability. CVE-2008-4166. Dos exploits for multiple platform |
| id | EDB-ID:32381 |
| last seen | 2016-02-03 |
| modified | 2008-09-12 |
| published | 2008-09-12 |
| reporter | 0x90 |
| source | https://www.exploit-db.com/download/32381/ |
| title | Avant Browser 11.7 Build 9 - JavaScript Engine Integer Overflow Vulnerability |
References
- http://securityreason.com/securityalert/4284
- http://securityreason.com/securityalert/4284
- http://www.securityfocus.com/archive/1/496301/100/0/threaded
- http://www.securityfocus.com/archive/1/496301/100/0/threaded
- http://www.securityfocus.com/bid/31155
- http://www.securityfocus.com/bid/31155
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45121
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45121