Executive Summary

Informations
Name CVE-2008-2953 First vendor Publication 2008-07-01
Vendor Cve Last vendor Modification 2017-08-08

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Linux DC++ (linuxdcpp) before 0.707 allows remote attackers to cause a denial of service (crash) via "partial file list requests" that trigger a NULL pointer dereference.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2953

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-20 Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 9

OpenVAS Exploits

Date Description
2009-04-09 Name : Mandriva Update for vim MDVSA-2008:236 (vim)
File : nvt/gb_mandriva_MDVSA_2008_236.nasl
2009-04-09 Name : Mandriva Update for vim MDVSA-2008:236-1 (vim)
File : nvt/gb_mandriva_MDVSA_2008_236_1.nasl
2009-02-17 Name : Fedora Update for linuxdcpp FEDORA-2008-6018
File : nvt/gb_fedora_2008_6018_linuxdcpp_fc9.nasl
2009-02-17 Name : Fedora Update for linuxdcpp FEDORA-2008-6038
File : nvt/gb_fedora_2008_6038_linuxdcpp_fc8.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
46556 DC++ Partial File List Request NULL Pointer Dereference Remote DoS

DC++ contains a flaw that may allow a remote denial of service. The issue is triggered when a NULL pointer dereference occurs on a partial file list request, and will result in loss of availability for the service.

Nessus® Vulnerability Scanner

Date Description
2009-04-23 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2008-236.nasl - Type : ACT_GATHER_INFO
2008-07-08 Name : The remote Fedora host is missing a security update.
File : fedora_2008-6018.nasl - Type : ACT_GATHER_INFO
2008-07-08 Name : The remote Fedora host is missing a security update.
File : fedora_2008-6038.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
BID http://www.securityfocus.com/bid/29924
CONFIRM http://cvs.berlios.de/cgi-bin/viewcvs.cgi/linuxdcpp/linuxdcpp/client/ShareMan...
http://sourceforge.net/project/shownotes.php?release_id=608612&group_id=4...
FEDORA https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00101.html
https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00116.html
SECTRACK http://www.securitytracker.com/id?1020407
http://www.securitytracker.com/id?1020408
SECUNIA http://secunia.com/advisories/30812
http://secunia.com/advisories/30907
http://secunia.com/advisories/30918
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/43341

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
Date Informations
2021-05-04 12:07:41
  • Multiple Updates
2021-04-22 01:08:03
  • Multiple Updates
2020-05-23 00:21:54
  • Multiple Updates
2017-08-08 09:24:12
  • Multiple Updates
2016-04-26 17:35:24
  • Multiple Updates
2014-02-17 10:45:33
  • Multiple Updates
2013-05-11 00:20:40
  • Multiple Updates