Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-3889HistorySep 12, 2008 - 4:56 p.m.
CVE-2008-3889
2008-09-1216:56:20
Debian Security Bug Tracker
security-tracker.debian.org
7
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
10.2%
Postfix 2.4 before 2.4.9, 2.5 before 2.5.5, and 2.6 before 2.6-20080902, when used with the Linux 2.6 kernel, leaks epoll file descriptors during execution of “non-Postfix” commands, which allows local users to cause a denial of service (application slowdown or exit) via a crafted command, as demonstrated by a command in a .forward file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | postfix | < 2.5.5-1 | postfix_2.5.5-1_all.deb |
| Debian | 11 | all | postfix | < 2.5.5-1 | postfix_2.5.5-1_all.deb |
| Debian | 10 | all | postfix | < 2.5.5-1 | postfix_2.5.5-1_all.deb |
| Debian | 999 | all | postfix | < 2.5.5-1 | postfix_2.5.5-1_all.deb |
| Debian | 13 | all | postfix | < 2.5.5-1 | postfix_2.5.5-1_all.deb |
Related
ubuntu
ubuntu
Postfix vulnerability
2008-09-10 00:00:00
nvd
nvd
CVE-2008-3889
2008-09-12 16:56:20
CVE-2008-4042
2008-09-11 21:06:47
nessus
nessus
GLSA-200809-09 : Postfix: Denial of Service
2008-09-22 00:00:00
Mandriva Linux Security Advisory : postfix (MDVSA-2008:190)
2009-04-23 00:00:00
openSUSE 10 Security Update : postfix (postfix-5603)
2008-09-18 00:00:00
cve
cve
CVE-2008-3889
2008-09-12 16:56:20
CVE-2008-4042
2008-09-11 21:06:47
cvelist
cvelist
CVE-2008-3889
2008-09-12 16:00:00
openvas
openvas
Ubuntu Update for postfix vulnerabilities USN-642-1
2009-03-23 00:00:00
Mandriva Update for postfix MDVSA-2008:190 (postfix)
2009-04-09 00:00:00
Ubuntu: Security Advisory (USN-642-1)
2009-03-23 00:00:00
ubuntucve
ubuntucve
CVE-2008-3889
2008-09-12 00:00:00
gentoo
gentoo
Postfix: Denial of service
2008-09-19 00:00:00
prion
prion
Command injection
2008-09-12 16:56:00
Design/Logic Flaw
2008-09-11 21:06:00
seebug
seebug
Postfix < 2.4.9, 2.5.5, 2.6-20080902 - (.forward) Local DoS Exploit
2014-07-01 00:00:00
Postfix < 2.4.9 2.5.5 2.6-20080902 (.forward) Local DoS Exploit
2008-09-16 00:00:00
Postfix < 2.4.9, 2.5.5, 2.6-20080902 (.forward) Local DoS Exploit
2008-09-17 00:00:00
exploitpack
exploitpack
Postfix 2.4.92.5.52.6-20080902 - .forward Local Denial of Service
2008-09-16 00:00:00
exploitdb
exploitdb
fedora
fedora
[SECURITY] Fedora 9 Update: postfix-2.5.5-1.fc9
2008-10-09 21:33:24
[SECURITY] Fedora 8 Update: postfix-2.5.5-1.fc8
2008-10-09 21:31:27
2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
0.0004 Low
EPSS
Percentile
10.2%
Related for DEBIANCVE:CVE-2008-3889