Lucene search

[email protected]CVE-2008-3683

HistoryAug 14, 2008 - 8:41 p.m.

CVE-2008-3683

2008-08-1420:41:00

[email protected]

web.nvd.nist.gov

vulnerability

ftp subsystem

sun java system

web proxy server

denial of service

nvd

cve-2008-3683

6.6 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.016 Low

EPSS

Percentile

87.2%

JSON

Unspecified vulnerability in the FTP subsystem in Sun Java System Web Proxy Server 4.0 through 4.0.5 before SP6 allows remote attackers to cause a denial of service (failure to accept connections) via unknown vectors, probably related to exhaustion of file descriptors.

Affected configurations

NVD

Node

sunjava_system_web_proxy_serverMatch4sp1

sunjava_system_web_proxy_serverMatch4sp2

sunjava_system_web_proxy_serverMatch4sp3

sunjava_system_web_proxy_serverMatch4sp4

sunjava_system_web_proxy_serverMatch4sp5

sunjava_system_web_proxy_serverMatch4.0.1sp1

sunjava_system_web_proxy_serverMatch4.0.1sp2

sunjava_system_web_proxy_serverMatch4.0.1sp3

sunjava_system_web_proxy_serverMatch4.0.1sp4

sunjava_system_web_proxy_serverMatch4.0.1sp5

sunjava_system_web_proxy_serverMatch4.0.2sp1

sunjava_system_web_proxy_serverMatch4.0.2sp2

sunjava_system_web_proxy_serverMatch4.0.2sp3

sunjava_system_web_proxy_serverMatch4.0.2sp4

sunjava_system_web_proxy_serverMatch4.0.2sp5

sunjava_system_web_proxy_serverMatch4.0.3sp1

sunjava_system_web_proxy_serverMatch4.0.3sp2

sunjava_system_web_proxy_serverMatch4.0.3sp3

sunjava_system_web_proxy_serverMatch4.0.3sp4

sunjava_system_web_proxy_serverMatch4.0.3sp5

sunjava_system_web_proxy_serverMatch4.0.4sp1

sunjava_system_web_proxy_serverMatch4.0.4sp2

sunjava_system_web_proxy_serverMatch4.0.4sp3

sunjava_system_web_proxy_serverMatch4.0.4sp4

sunjava_system_web_proxy_serverMatch4.0.4sp5

sunjava_system_web_proxy_serverMatch4.0.5sp1

sunjava_system_web_proxy_serverMatch4.0.5sp2

sunjava_system_web_proxy_serverMatch4.0.5sp3

sunjava_system_web_proxy_serverMatch4.0.5sp4

sunjava_system_web_proxy_serverMatch4.0.5sp5

CPENameOperatorVersion
sun:java_system_web_proxy_serversun java system web proxy servereq4
sun:java_system_web_proxy_serversun java system web proxy servereq4.0.1
sun:java_system_web_proxy_serversun java system web proxy servereq4.0.2
sun:java_system_web_proxy_serversun java system web proxy servereq4.0.3
sun:java_system_web_proxy_serversun java system web proxy servereq4.0.4
sun:java_system_web_proxy_serversun java system web proxy servereq4.0.5

CPE	Name	Operator	Version
sun:java_system_web_proxy_server	sun java system web proxy server	eq	4
sun:java_system_web_proxy_server	sun java system web proxy server	eq	4.0.1
sun:java_system_web_proxy_server	sun java system web proxy server	eq	4.0.2
sun:java_system_web_proxy_server	sun java system web proxy server	eq	4.0.3
sun:java_system_web_proxy_server	sun java system web proxy server	eq	4.0.4
sun:java_system_web_proxy_server	sun java system web proxy server	eq	4.0.5

References

secunia.com/advisories/31476

sunsolve.sun.com/search/document.do?assetkey=1-26-240327-1

www.securityfocus.com/bid/30671

www.securitytracker.com/id?1020696

www.vupen.com/english/advisories/2008/2366

exchange.xforce.ibmcloud.com/vulnerabilities/44413

6.6 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.016 Low

EPSS

Percentile

87.2%

JSON

Related for CVE-2008-3683

nvd1 cvelist1 prion1