Lucene search

MitreCVE-2008-5564

HistoryDec 15, 2008 - 6:00 p.m.

CVE-2008-5564

2008-12-1518:00:00

mitre

web.nvd.nist.gov

cve-2008-5564

orb networks

media server

remote attackers

denial of service

http request

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.013

Percentile

85.8%

JSON

Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request.

Affected configurations

Nvd

Node

orb_networksorbRange≤2.01.0022

orb_networksorbMatch2.00.0930

orb_networksorbMatch2.00.0989

orb_networksorbMatch2.00.1014

orb_networksorbMatch2.00.1084

orb_networksorbMatch2.01.0008

orb_networksorbMatch2.01.0013

orb_networksorbMatch2.01.0015

orb_networksorbMatch2.01.0017

VendorProductVersionCPE
orb_networksorb*cpe:2.3:a:orb_networks:orb:*:*:*:*:*:*:*:*
orb_networksorb2.00.0930cpe:2.3:a:orb_networks:orb:2.00.0930:*:*:*:*:*:*:*
orb_networksorb2.00.0989cpe:2.3:a:orb_networks:orb:2.00.0989:*:*:*:*:*:*:*
orb_networksorb2.00.1014cpe:2.3:a:orb_networks:orb:2.00.1014:*:*:*:*:*:*:*
orb_networksorb2.00.1084cpe:2.3:a:orb_networks:orb:2.00.1084:*:*:*:*:*:*:*
orb_networksorb2.01.0008cpe:2.3:a:orb_networks:orb:2.01.0008:*:*:*:*:*:*:*
orb_networksorb2.01.0013cpe:2.3:a:orb_networks:orb:2.01.0013:*:*:*:*:*:*:*
orb_networksorb2.01.0015cpe:2.3:a:orb_networks:orb:2.01.0015:*:*:*:*:*:*:*
orb_networksorb2.01.0017cpe:2.3:a:orb_networks:orb:2.01.0017:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
orb_networks	orb	*	cpe:2.3:a:orb_networks:orb::::::::
orb_networks	orb	2.00.0930	cpe:2.3:a:orb_networks:orb:2.00.0930:::::::*
orb_networks	orb	2.00.0989	cpe:2.3:a:orb_networks:orb:2.00.0989:::::::*
orb_networks	orb	2.00.1014	cpe:2.3:a:orb_networks:orb:2.00.1014:::::::*
orb_networks	orb	2.00.1084	cpe:2.3:a:orb_networks:orb:2.00.1084:::::::*
orb_networks	orb	2.01.0008	cpe:2.3:a:orb_networks:orb:2.01.0008:::::::*
orb_networks	orb	2.01.0013	cpe:2.3:a:orb_networks:orb:2.01.0013:::::::*
orb_networks	orb	2.01.0015	cpe:2.3:a:orb_networks:orb:2.01.0015:::::::*
orb_networks	orb	2.01.0017	cpe:2.3:a:orb_networks:orb:2.01.0017:::::::*

References

secunia.com/advisories/33017

securityreason.com/securityalert/4729

www.securityfocus.com/archive/1/498904/100/0/threaded

www.securityfocus.com/bid/32628

exchange.xforce.ibmcloud.com/vulnerabilities/47083

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.013

Percentile

85.8%

JSON

Related for CVE-2008-5564