CVE-2019-8961
First published: Tue Apr 21 2020(Updated: )
A Denial of Service vulnerability related to stack exhaustion has been identified in FlexNet Publisher lmadmin.exe 11.16.2. Because the message reading function calls itself recursively given a certain condition in the received message, an unauthenticated remote attacker can repeatedly send messages of that type to cause a stack exhaustion condition.
Credit: PSIRT-CNA@flexerasoftware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Flexera Flexnet Publisher | =11.16.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-8961?
CVE-2019-8961 is a Denial of Service vulnerability related to stack exhaustion in FlexNet Publisher lmadmin.exe 11.16.2.
How severe is CVE-2019-8961?
CVE-2019-8961 has a severity value of 7.5, which is considered high.
How does CVE-2019-8961 affect FlexNet Publisher?
CVE-2019-8961 allows an unauthenticated remote attacker to repeatedly send messages, leading to stack exhaustion and causing a Denial of Service in FlexNet Publisher lmadmin.exe 11.16.2.
How can I fix CVE-2019-8961?
To fix CVE-2019-8961, it is recommended to update FlexNet Publisher to a version that has remediated this vulnerability.
Where can I find more information about CVE-2019-8961?
You can find more information about CVE-2019-8961 in the Flexera Community Knowledge Base.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/flexera
- canonical/flexera flexnet publisher
- version/flexera flexnet publisher/11.16.2