Lucene search

[email protected]CVE-2008-0372

HistoryJan 22, 2008 - 8:00 p.m.

CVE-2008-0372

2008-01-2220:00:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2008-0372

internet filter

remote attack

fragmented http request

security vulnerability

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.019 Low

EPSS

Percentile

88.6%

JSON

8e6 R3000 Internet Filter 2.0.05.33, and other versions before 2.0.11, allows remote attackers to bypass intended restrictions via a fragmented HTTP request.

Affected configurations

NVD

Node

8e6r3000_internet_filterRange≤2.0.05.33

8e6r3000_internet_filterRange≤2.0.10

CPENameOperatorVersion
8e6:r3000_internet_filter8e6 r3000 internet filterle2.0.05.33
8e6:r3000_internet_filter8e6 r3000 internet filterle2.0.10

CPE	Name	Operator	Version
8e6:r3000_internet_filter	8e6 r3000 internet filter	le	2.0.05.33
8e6:r3000_internet_filter	8e6 r3000 internet filter	le	2.0.10

References

secunia.com/advisories/28524

securityreason.com/securityalert/3557

www.securityfocus.com/archive/1/486398/100/0/threaded

www.securityfocus.com/archive/1/486770/100/0/threaded

www.securityfocus.com/bid/27309

exchange.xforce.ibmcloud.com/vulnerabilities/39723

6.7 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.019 Low

EPSS

Percentile

88.6%

JSON

Related for CVE-2008-0372

nvd1 cvelist1 prion1