Lucene search

[email protected]CVE-2008-2423

HistoryMay 23, 2008 - 3:33 p.m.

CVE-2008-2423

2008-05-2315:33:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2008-2423

interchange

denial of service

http requests

vulnerability

nvd

6.8 Medium

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

87.9%

JSON

Unspecified vulnerability in Interchange before 5.6.0 and before 5.5.2 allows remote attackers to cause a denial of service via crafted HTTP requests. NOTE: this might overlap CVE-2007-2635.

CPENameOperatorVersion
interchange_development_group:interchangeinterchange development group interchangeeq4.8.4
interchange_development_group:interchangeinterchange development group interchangeeq5.5.1
interchange_development_group:interchangeinterchange development group interchangeeq4.8.1
interchange_development_group:interchangeinterchange development group interchangeeq4.9.3
interchange_development_group:interchangeinterchange development group interchangeeq4.8.3
interchange_development_group:interchangeinterchange development group interchangeeq5.4.1
interchange_development_group:interchangeinterchange development group interchangeeq5.0.2
interchange_development_group:interchangeinterchange development group interchangeeq5.2
interchange_development_group:interchangeinterchange development group interchangeeq4.9.5
interchange_development_group:interchangeinterchange development group interchangeeq5.0

CPE	Name	Operator	Version
interchange_development_group:interchange	interchange development group interchange	eq	4.8.4
interchange_development_group:interchange	interchange development group interchange	eq	5.5.1
interchange_development_group:interchange	interchange development group interchange	eq	4.8.1
interchange_development_group:interchange	interchange development group interchange	eq	4.9.3
interchange_development_group:interchange	interchange development group interchange	eq	4.8.3
interchange_development_group:interchange	interchange development group interchange	eq	5.4.1
interchange_development_group:interchange	interchange development group interchange	eq	5.0.2
interchange_development_group:interchange	interchange development group interchange	eq	5.2
interchange_development_group:interchange	interchange development group interchange	eq	4.9.5
interchange_development_group:interchange	interchange development group interchange	eq	5.0

Rows per page:

1-10 of 271

References

ftp.icdevgroup.org/interchange/5.6/ANNOUNCEMENT-5.6.0.txt

ftp.icdevgroup.org/pub/interchange/5.5/ANNOUNCEMENT-5.5.2.txt

secunia.com/advisories/30346

www.securityfocus.com/bid/28987

www.securityfocus.com/bid/29334

www.vupen.com/english/advisories/2008/1621/references

exchange.xforce.ibmcloud.com/vulnerabilities/42120

exchange.xforce.ibmcloud.com/vulnerabilities/42580

exchange.xforce.ibmcloud.com/vulnerabilities/42801

6.8 Medium

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

87.9%

JSON

Related for CVE-2008-2423

prion2 ubuntucve2 cve1