Lucene search

[email protected]NVD:CVE-2008-5285

HistoryDec 01, 2008 - 3:30 p.m.

CVE-2008-5285

2008-12-0115:30:03

CWE-399

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.5%

JSON

Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of service via a long SMTP request, which triggers an infinite loop.

Affected configurations

NVD

Node

wiresharkwiresharkRange≤1.0.4

wiresharkwiresharkMatch0.6

wiresharkwiresharkMatch0.7.9

wiresharkwiresharkMatch0.8.16

wiresharkwiresharkMatch0.8.19

wiresharkwiresharkMatch0.9.5

wiresharkwiresharkMatch0.9.7

wiresharkwiresharkMatch0.9.8

wiresharkwiresharkMatch0.9.10

wiresharkwiresharkMatch0.9.14

wiresharkwiresharkMatch0.10

wiresharkwiresharkMatch0.10.1

wiresharkwiresharkMatch0.10.2

wiresharkwiresharkMatch0.10.3

wiresharkwiresharkMatch0.10.4

wiresharkwiresharkMatch0.10.5

wiresharkwiresharkMatch0.10.6

wiresharkwiresharkMatch0.10.7

wiresharkwiresharkMatch0.10.8

wiresharkwiresharkMatch0.10.9

wiresharkwiresharkMatch0.10.10

wiresharkwiresharkMatch0.10.11

wiresharkwiresharkMatch0.10.12

wiresharkwiresharkMatch0.10.13

wiresharkwiresharkMatch0.10.14

wiresharkwiresharkMatch0.99

wiresharkwiresharkMatch0.99.0

wiresharkwiresharkMatch0.99.1

wiresharkwiresharkMatch0.99.2

wiresharkwiresharkMatch0.99.3

wiresharkwiresharkMatch0.99.4

wiresharkwiresharkMatch0.99.5

wiresharkwiresharkMatch0.99.6

wiresharkwiresharkMatch0.99.6a

wiresharkwiresharkMatch0.99.7

wiresharkwiresharkMatch0.99.8

wiresharkwiresharkMatch1.0

wiresharkwiresharkMatch1.0.0

wiresharkwiresharkMatch1.0.1

wiresharkwiresharkMatch1.0.2

wiresharkwiresharkMatch1.0.3

References

lists.grok.org.uk/pipermail/full-disclosure/2008-November/065840.html

secunia.com/advisories/32840

secunia.com/advisories/34144

securityreason.com/securityalert/4663

support.avaya.com/elmodocs2/security/ASA-2009-082.htm

wiki.rpath.com/Advisories:rPSA-2008-0336

www.mandriva.com/security/advisories?name=MDVSA-2008:242

www.openwall.com/lists/oss-security/2008/11/24/1

www.redhat.com/support/errata/RHSA-2009-0313.html

www.securityfocus.com/archive/1/498562/100/0/threaded

www.securityfocus.com/archive/1/499154/100/0/threaded

www.securityfocus.com/bid/32422

www.securitytracker.com/id?1021275

www.vupen.com/english/advisories/2008/3231

www.wireshark.org/security/wnpa-sec-2008-07.html

bugzilla.redhat.com/show_bug.cgi?id=472737

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11351

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.2 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.5%

JSON

Related for NVD:CVE-2008-5285

openvas24 freebsd1 debiancve1 nessus11 cvelist1 securityvulns2 prion1 cve1 veracode1 ubuntucve1 oraclelinux1 redhat1 centos1 gentoo1