ID CVE-2008-5421
Type cve
Reporter cve@mitre.org
Modified 2008-12-12T05:00:00
Description
The SSL web administration service in NetWin SmsGate 1.1n and earlier allows remote attackers to cause a denial of service (hang) via (1) a large integer in the Content-Length HTTP header; (2) an invalid value in the Content-Length HTTP header, as demonstrated by a negative integer; or (3) a missing Content-Length HTTP header.
{"id": "CVE-2008-5421", "bulletinFamily": "NVD", "title": "CVE-2008-5421", "description": "The SSL web administration service in NetWin SmsGate 1.1n and earlier allows remote attackers to cause a denial of service (hang) via (1) a large integer in the Content-Length HTTP header; (2) an invalid value in the Content-Length HTTP header, as demonstrated by a negative integer; or (3) a missing Content-Length HTTP header.", "published": "2008-12-11T15:30:00", "modified": "2008-12-12T05:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5421", "reporter": "cve@mitre.org", "references": ["http://aluigi.altervista.org/adv/smsgheit-adv.txt", "http://secunia.com/advisories/29149", "http://www.securityfocus.com/bid/28048"], "cvelist": ["CVE-2008-5421"], "type": "cve", "lastseen": "2019-05-29T18:09:29", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "5199dd8e660797d3ab2a0207bfdf9135"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "f71b3237e48b41c75e8d507304f008dd"}, {"key": "cpe23", "hash": "9b13edcc81e1eb31d42c6faa03823c2e"}, {"key": "cvelist", "hash": "4a1595f3d32e4e3381a1a38eddd98d53"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "cvss2", "hash": "85fc9715d07b57d9e72056856b007c7b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "1c0be0631b7bf4c3a8c83298e68c99eb"}, {"key": "description", "hash": "9d768f0d135722913b281d22d92a5297"}, {"key": "href", "hash": "118a5e38e32169477aa05c61a2e8d49b"}, {"key": "modified", "hash": "b5b38516c37016b312971b84a4466a16"}, {"key": "published", "hash": "e806ddb142b11ee64ec3a7afc2ef615c"}, {"key": "references", "hash": "716d91af8ee46275c73bf0d974786712"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "cafed4d052d3b3a25cdb43c357916c4f"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "e4ac33b407bcef676bb061e1a7d6f216cc2d86b1cc1560ca35b32aef8511dad5", "viewCount": 0, "enchantments": {"score": {"value": 5.3, "vector": "NONE", "modified": "2019-05-29T18:09:29"}, "dependencies": {"references": [], "modified": "2019-05-29T18:09:29"}, "vulnersScore": 5.3}, "objectVersion": "1.3", "cpe": ["cpe:/a:netwin:smsgate:1.0a", "cpe:/a:netwin:smsgate:1.1m", "cpe:/a:netwin:smsgate:1.0w", "cpe:/a:netwin:smsgate:1.0r", "cpe:/a:netwin:smsgate:1.0h", "cpe:/a:netwin:smsgate:1.0c"], "affectedSoftware": [{"name": "netwin smsgate", "operator": "le", "version": "1.1n"}, {"name": "netwin smsgate", "operator": "eq", "version": "1.0w"}, {"name": "netwin smsgate", "operator": "eq", "version": "1.0h"}, {"name": "netwin smsgate", "operator": "eq", "version": "1.1m"}, {"name": "netwin smsgate", "operator": "eq", "version": "1.0a"}, {"name": "netwin smsgate", "operator": "eq", "version": "1.0r"}, {"name": "netwin smsgate", "operator": "eq", "version": "1.0c"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:netwin:smsgate:1.1m:*:*:*:*:*:*:*", "cpe:2.3:a:netwin:smsgate:1.0c:*:*:*:*:*:*:*", "cpe:2.3:a:netwin:smsgate:1.0w:*:*:*:*:*:*:*", "cpe:2.3:a:netwin:smsgate:1.0h:*:*:*:*:*:*:*", "cpe:2.3:a:netwin:smsgate:1.0a:*:*:*:*:*:*:*", "cpe:2.3:a:netwin:smsgate:1.0r:*:*:*:*:*:*:*"], "cwe": ["CWE-399"]}
{}