Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-2375HistoryJul 09, 2008 - 12:41 a.m.
CVE-2008-2375
2008-07-0900:41:00
Debian Security Bug Tracker
security-tracker.debian.org
14
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
EPSS
0.093
Percentile
94.8%
Memory leak in a certain Red Hat deployment of vsftpd before 2.0.5 on Red Hat Enterprise Linux (RHEL) 3 and 4, when PAM is used, allows remote attackers to cause a denial of service (memory consumption) via a large number of invalid authentication attempts within the same session, a different vulnerability than CVE-2007-5962.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | vsftpd | <Β 3.0.3-13 | vsftpd_3.0.3-13_all.deb |
| Debian | 11 | all | vsftpd | <Β 3.0.3-12 | vsftpd_3.0.3-12_all.deb |
| Debian | 999 | all | vsftpd | <Β 3.0.3-13.1 | vsftpd_3.0.3-13.1_all.deb |
| Debian | 13 | all | vsftpd | <Β 3.0.3-13.1 | vsftpd_3.0.3-13.1_all.deb |
Related
nvd
nvd
CVE-2008-2375
2008-07-09 00:41:00
CVE-2007-5962
2008-05-22 13:09:00
ubuntucve
ubuntucve
CVE-2008-2375
2008-07-09 00:00:00
CVE-2007-5962
2008-05-22 00:00:00
prion
prion
Session fixation
2008-07-09 00:41:00
Design/Logic Flaw
2008-05-22 13:09:00
cve
cve
CVE-2008-2375
2008-07-09 00:41:00
CVE-2007-5962
2008-05-22 13:09:00
cvelist
cvelist
CVE-2008-2375
2008-07-09 00:00:00
CVE-2007-5962
2008-05-22 10:00:00
openvas
openvas
RedHat Update for vsftpd RHSA-2008:0295-01
2009-03-06 00:00:00
RedHat Update for vsftpd RHSA-2008:0295-01
2009-03-06 00:00:00
Oracle: Security Advisory (ELSA-2008-0295)
2015-10-08 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:25:16
oraclelinux
oraclelinux
vsftpd security and bug fix update
2008-05-30 00:00:00
vsftpd security and bug fix update
2008-08-01 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: vsftpd-2.0.6-4.fc9
2008-05-22 20:38:14
[SECURITY] Fedora 7 Update: vsftpd-2.0.5-17.fc7
2008-05-22 20:38:34
[SECURITY] Fedora 8 Update: vsftpd-2.0.5-20.fc8
2008-05-22 20:37:36
debiancve
debiancve
CVE-2007-5962
2008-05-22 13:09:00
nessus
nessus
Fedora 9 : vsftpd-2.0.6-4.fc9 (2008-4362)
2008-05-23 00:00:00
Scientific Linux Security Update : vsftpd on SL5.x i386/x86_64
2012-08-01 00:00:00
Oracle Linux 5 : vsftpd (ELSA-2008-0295)
2023-09-07 00:00:00
exploitdb
exploitdb
vsftpd 2.0.5 - 'deny_file' Option Remote Denial of Service (2)
2008-05-21 00:00:00
vsftpd 2.0.5 - 'CWD' (Authenticated) Remote Memory Consumption
2008-06-14 00:00:00
vsftpd 2.0.5 - 'deny_file' Option Remote Denial of Service (1)
2008-05-21 00:00:00
redhat
redhat
(RHSA-2008:0295) Low: vsftpd security and bug fix update
2008-05-21 00:00:00
(RHSA-2008:0680) Moderate: vsftpd security and bug fix update
2008-07-24 00:00:00
(RHSA-2008:0579) Moderate: vsftpd security update
2008-07-24 00:00:00
centos
centos
vsftpd security update
2008-07-24 22:17:17
seebug
seebug
vsftpd FTPζε‘ε¨PAMιͺθ―樑εθΏη¨ζη»ζε‘ζΌζ΄
2008-07-28 00:00:00
securityvulns
securityvulns
rPSA-2008-0217-1 vsftpd
2008-07-12 00:00:00
vsftpd FTP server memory leak
2008-07-12 00:00:00
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
EPSS
0.093
Percentile
94.8%
Related for DEBIANCVE:CVE-2008-2375