CVE-2008-2423

Unspecified vulnerability in Interchange before 5.6.0 and before 5.5.2 allows remote attackers to cause a denial of service via crafted HTTP requests. NOTE: this might overlap CVE-2007-2635.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://ftp.icdevgroup.org/interchange/5.6/ANNOUNCEMENT-5.6.0.txt
http://ftp.icdevgroup.org/pub/interchange/5.5/ANNOUNCEMENT-5.5.2.txt
http://secunia.com/advisories/30346	Vendor Advisory
http://www.securityfocus.com/bid/28987
http://www.securityfocus.com/bid/29334
http://www.vupen.com/english/advisories/2008/1621/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42120
https://exchange.xforce.ibmcloud.com/vulnerabilities/42580
https://exchange.xforce.ibmcloud.com/vulnerabilities/42801

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:interchange_development_group:interchange:4.8.0:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.1:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.2:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.3:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.4:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.5:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.6:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.7:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.8:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.8.9:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.9.3:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.9.4:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.9.5:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.9.6:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.9.8:::::::*
	cpe:2.3:a:interchange_development_group:interchange:4.9.9:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.0:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.0.1:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.0.2:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.1:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.1.1:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.2:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.2.0:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.4.1:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.5.1:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.5.2:::::::*
	cpe:2.3:a:interchange_development_group:interchange:5.5.3:::::::*

History

No history.

Information

Published : 2008-05-23 15:33

Updated : 2024-02-28 11:21

NVD link : CVE-2008-2423

Mitre link : CVE-2008-2423

CVE.ORG link : CVE-2008-2423

JSON object : View

Products Affected

interchange_development_group

interchange

CWE

NVD-CWE-noinfo

10.0 /10