Lucene search

MitreCVE-2008-1532

HistoryMar 28, 2008 - 12:44 a.m.

CVE-2008-1532

2008-03-2800:44:00

CWE-20

mitre

web.nvd.nist.gov

cve-2008-1532

perlbal

denial of service

nvd

security vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

High

EPSS

0.127

Percentile

95.6%

JSON

Perlbal before 1.70, when buffered upload is enabled, allows remote attackers to cause a denial of service (crash) via a zero-byte chunked upload.

Affected configurations

Nvd

Node

perlbalperlbalRange≤1.60

VendorProductVersionCPE
perlbalperlbal*cpe:2.3:a:perlbal:perlbal:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
perlbal	perlbal	*	cpe:2.3:a:perlbal:perlbal::::::::

References

bugs.gentoo.org/show_bug.cgi?id=214784

search.cpan.org/src/BRADFITZ/Perlbal-1.70/CHANGES

secunia.com/advisories/29565

secunia.com/advisories/29619

www.securityfocus.com/bid/28491

www.vupen.com/english/advisories/2008/1045/references

bugzilla.redhat.com/show_bug.cgi?id=439054

exchange.xforce.ibmcloud.com/vulnerabilities/41538

www.redhat.com/archives/fedora-package-announce/2008-March/msg00665.html

www.redhat.com/archives/fedora-package-announce/2008-March/msg00672.html

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

High

EPSS

0.127

Percentile

95.6%

JSON

Related for CVE-2008-1532