CVE-2008-3688
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.023 Low
EPSS
Percentile
89.9%
sockethandler.cpp in HTTP Antivirus Proxy (HAVP) 0.88 allows remote attackers to cause a denial of service (hang) by connecting to a non-responsive server, which triggers an infinite loop due to an uninitialized variable.
Affected configurations
| CPE | Name | Operator | Version |
|---|---|---|---|
| havp:http_antivirus_proxy | havp http antivirus proxy | eq | 0.88 |
References
secunia.com/advisories/31494
secunia.com/advisories/31971
www.gentoo.org/security/en/glsa/glsa-200809-11.xml
www.securityfocus.com/bid/30697
www.securitytracker.com/id?1020900
www.server-side.de/index.htm
exchange.xforce.ibmcloud.com/vulnerabilities/44467
sourceforge.net/mailarchive/message.php?msg_name=487CDF51.5060201%40endian.com
Related
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.023 Low
EPSS
Percentile
89.9%