HIGH🇵🇱 Wersja polska

CVE-2019-8960

CVSS 7.5v3.1pub. 2020-04-21upd. 2024-11-21

A Denial of Service vulnerability related to command handling has been identified in FlexNet Publisher lmadmin.exe version 11.16.2. The message reading function used in lmadmin.exe can, given a certain message, call itself again and then wait for a further message. With a particular flag set in the original message, but no second message received, the function eventually return an unexpected value which leads to an exception being thrown. The end result can be process termination.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Flexera Flexnet Publisher

    APP
    Flexera
    11.16.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2018-20033CRITICAL9.8ten sam produkt

A Remote Code Execution vulnerability in lmgrd and vendor daemon components of FlexNet Publisher version 11.16...

CVE-2019-8963HIGH7.5ten sam produkt

A Denial of Service (DoS) vulnerability was discovered in FlexNet Publisher's lmadmin 11.16.5, when doing a cr...

CVE-2020-12080HIGH7.5ten sam produkt

A Denial of Service vulnerability has been identified in FlexNet Publisher's lmadmin.exe version 11.16.6. A ce...

CVE-2020-12081HIGH7.5ten sam produkt

An information disclosure vulnerability has been identified in FlexNet Publisher lmadmin.exe 11.14.0.2. The we...

CVE-2019-8961HIGH7.5ten sam produkt

A Denial of Service vulnerability related to stack exhaustion has been identified in FlexNet Publisher lmadmin...