Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-1673
HistoryJun 10, 2008 - 12:32 a.m.

CVE-2008-1673

2008-06-1000:32:00
CWE-119
[email protected]
web.nvd.nist.gov
61
cve
2008
1673
linux kernel
asn.1
implementation
vulnerability
remote code execution
denial of service

7.3 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.074 Low

EPSS

Percentile

94.0%

JSON

The asn1 implementation in (a) the Linux kernel 2.4 before 2.4.36.6 and 2.6 before 2.6.25.5, as used in the cifs and ip_nat_snmp_basic modules; and (b) the gxsnmp package; does not properly validate length values during decoding of ASN.1 BER data, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) a length greater than the working buffer, which can lead to an unspecified overflow; (2) an oid length of zero, which can lead to an off-by-one error; or (3) an indefinite length for a primitive encoding.

References

Related

nessus 14
openvas 23
seebug 2
prion 1
ubuntucve 1
debian 2
securityvulns 2
osv 1
fedora 1
suse 7
oraclelinux 5
ubuntu 1
nessus
nessus
Mandriva Linux Security Advisory : kernel (MDVSA-2008:113)
2009-04-23 00:00:00
Fedora 8 : kernel-2.6.25.6-27.fc8 (2008-5454)
2008-06-24 00:00:00
Fedora 9 : kernel-2.6.25.6-55.fc9 (2008-5308)
2008-06-16 00:00:00
openvas
openvas
Fedora Update for kernel FEDORA-2008-5308
2009-02-17 00:00:00
Mandriva Update for kernel MDVSA-2008:113 (kernel)
2009-04-09 00:00:00
Mandriva Update for kernel MDVSA-2008:113 (kernel)
2009-04-09 00:00:00
seebug
seebug
Linux Kernel BER解码缓冲区溢出漏洞
2008-06-11 00:00:00
Linux Kernel BER Decoding Remote Buffer Overflow Vulnerability
2008-08-22 00:00:00
prion
prion
Design/Logic Flaw
2008-06-10 00:32:00
ubuntucve
ubuntucve
CVE-2008-1673
2008-06-10 00:00:00
debian
debian
[SECURITY] [DSA 1592-1] New Linux 2.6.18 packages fix overflow conditions
2008-06-09 06:37:30
[SECURITY] [DSA 1592-2] New Linux 2.6.18 packages fix overflow conditions
2008-06-09 17:15:28
securityvulns
securityvulns
[SECURITY] [DSA 1592-1] New Linux 2.6.18 packages fix overflow conditions
2008-06-09 00:00:00
Linux kernel multiple security vulnerabilities
2008-06-09 00:00:00
osv
osv
linux-2.6 - overflow conditions
2008-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 8 Update: kernel-2.6.25.6-27.fc8
2008-06-20 19:05:23
suse
suse
remote denial of service in kernel
2008-09-11 13:24:55
remote denial of service in kernel
2008-10-01 17:25:47
remote denial of service in kernel
2008-10-01 15:09:37
oraclelinux
oraclelinux
kernel security and bug fix update
2008-06-26 00:00:00
kernel security and bug fix update
2008-06-26 00:00:00
kernel security and bug fix update
2008-12-18 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2008-07-15 00:00:00

7.3 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.074 Low

EPSS

Percentile

94.0%

JSON
Related for CVE-2008-1673
nessus14openvas23seebug2prion1ubuntucve1debian2securityvulns2osv1fedora1suse7oraclelinux5ubuntu1