Lucene search

[email protected]CVE-2008-7185

HistorySep 08, 2009 - 11:30 p.m.

CVE-2008-7185

2009-09-0823:30:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2008-7185

gnome rhythmbox

denial of service

segmentation fault

nvd

vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.3%

JSON

GNOME Rhythmbox 0.11.5 allows remote attackers to cause a denial of service (segmentation fault and crash) via a playlist (.pls) file with a long Title field, possibly related to the g_hash_table_lookup function in b-playlist-manager.c.

Affected configurations

NVD

Node

gnomerhythmboxMatch0.11.5

CPENameOperatorVersion
gnome:rhythmboxgnome rhythmboxeq0.11.5

CPE	Name	Operator	Version
gnome:rhythmbox	gnome rhythmbox	eq	0.11.5

References

packetstormsecurity.org/0806-advisories/rhythmbox-dos.txt

www.securityfocus.com/archive/1/493683/100/0/threaded

www.securityfocus.com/archive/1/493809/100/0/threaded

www.securityfocus.com/bid/29958

exchange.xforce.ibmcloud.com/vulnerabilities/43436

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.026 Low

EPSS

Percentile

90.3%

JSON

Related for CVE-2008-7185

ubuntucve1 cvelist1 debiancve1 prion1 nvd1