CVE-2008-1441

2008-06-1202:32:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2008-1441

microsoft windows

pgm

vulnerability

denial of service

nvd

security

6.5 Medium

AI Score

Confidence

Low

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

0.035 Low

EPSS

Percentile

91.6%

JSON

Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system hang) via a series of Pragmatic General Multicast (PGM) packets with invalid fragment options, aka the “PGM Malformed Fragment Vulnerability.”

CPENameOperatorVersion
microsoft:windows_xpmicrosoft windows xpeq-
microsoft:windows_server_2008microsoft windows server 2008eq-
microsoft:windows_vistamicrosoft windows vistaeq-
microsoft:windows_server_2003microsoft windows server 2003eq-

CPE	Name	Operator	Version
microsoft:windows_xp	microsoft windows xp	eq	-
microsoft:windows_server_2008	microsoft windows server 2008	eq	-
microsoft:windows_vista	microsoft windows vista	eq	-
microsoft:windows_server_2003	microsoft windows server 2003	eq	-