Lucene search

[email protected]CVE-2008-1441

HistoryJun 12, 2008 - 2:32 a.m.

CVE-2008-1441

2008-06-1202:32:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2008-1441

microsoft windows

pgm

vulnerability

denial of service

nvd

security

5.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

6.3 Medium

AI Score

Confidence

High

0.035 Low

EPSS

Percentile

91.6%

JSON

Microsoft Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote attackers to cause a denial of service (system hang) via a series of Pragmatic General Multicast (PGM) packets with invalid fragment options, aka the “PGM Malformed Fragment Vulnerability.”

Affected configurations

NVD

Node

microsoftwindows_server_2003Match-x64

microsoftwindows_server_2003Match-sp1

microsoftwindows_server_2003Match-sp1itanium

microsoftwindows_server_2003Match-sp2

microsoftwindows_server_2003Match-sp2itanium

microsoftwindows_server_2003Match-sp2x64

microsoftwindows_server_2008Match-

microsoftwindows_server_2008Match-itanium

microsoftwindows_server_2008Match-x64

microsoftwindows_vistaMatch-

microsoftwindows_vistaMatch-x64

microsoftwindows_vistaMatch-sp1

microsoftwindows_vistaMatch-sp1x64

microsoftwindows_xpMatch-professionalx64

microsoftwindows_xpMatch-sp2

microsoftwindows_xpMatch-sp2professionalx64

microsoftwindows_xpMatch-sp3

CPENameOperatorVersion
microsoft:windows_server_2003microsoft windows server 2003eq-
microsoft:windows_server_2008microsoft windows server 2008eq-
microsoft:windows_vistamicrosoft windows vistaeq-
microsoft:windows_xpmicrosoft windows xpeq-

CPE	Name	Operator	Version
microsoft:windows_server_2003	microsoft windows server 2003	eq	-
microsoft:windows_server_2008	microsoft windows server 2008	eq	-
microsoft:windows_vista	microsoft windows vista	eq	-
microsoft:windows_xp	microsoft windows xp	eq	-