Vulnerabilidad en Linux DC++ (linuxdcpp) (CVE-2008-2953)
Gravedad CVSS v2.0:
MEDIA
Tipo:
CWE-20
Validación incorrecta de entrada
Fecha de publicación:
01/07/2008
Última modificación:
09/04/2025
Descripción
Linux DC++ (linuxdcpp) anterior a 0.707, permite a atacantes remotos provocar una denegación de servicio (Caída) a través de "peticiones de listado de ficheros parciales" que lanza una referencia a un puntero NULL.
Impacto
Puntuación base 2.0
5.00
Gravedad 2.0
MEDIA
Productos y versiones vulnerables
| CPE | Desde | Hasta |
|---|---|---|
| cpe:2.3:a:linux:direct_connect:0.686:*:*:*:*:*:*:* | ||
| cpe:2.3:a:linux:direct_connect:0.699:*:*:*:*:*:*:* | ||
| cpe:2.3:a:linux:direct_connect:0.700:*:*:*:*:*:*:* | ||
| cpe:2.3:a:linux:direct_connect:0.701:*:*:*:*:*:*:* | ||
| cpe:2.3:a:linux:direct_connect:0.702:*:*:*:*:*:*:* | ||
| cpe:2.3:a:linux:direct_connect:0.703:*:*:*:*:*:*:* | ||
| cpe:2.3:a:linux:direct_connect:0.704:*:*:*:*:*:*:* | ||
| cpe:2.3:a:linux:direct_connect:0.705:*:*:*:*:*:*:* | ||
| cpe:2.3:a:linux:direct_connect:0.706:*:*:*:*:*:*:* |
Para consultar la lista completa de nombres de CPE con productos y versiones, ver esta página
Referencias a soluciones, herramientas e información
- http://cvs.berlios.de/cgi-bin/viewcvs.cgi/linuxdcpp/linuxdcpp/client/ShareManager.cpp.diff?r1=1.14&r2=1.15&sortby=date
- http://secunia.com/advisories/30812
- http://secunia.com/advisories/30907
- http://secunia.com/advisories/30918
- http://sourceforge.net/project/shownotes.php?release_id=608612&group_id=40287
- http://www.securityfocus.com/bid/29924
- http://www.securitytracker.com/id?1020407=
- http://www.securitytracker.com/id?1020408=
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43341
- https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00101.html
- https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00116.html
- http://cvs.berlios.de/cgi-bin/viewcvs.cgi/linuxdcpp/linuxdcpp/client/ShareManager.cpp.diff?r1=1.14&r2=1.15&sortby=date
- http://secunia.com/advisories/30812
- http://secunia.com/advisories/30907
- http://secunia.com/advisories/30918
- http://sourceforge.net/project/shownotes.php?release_id=608612&group_id=40287
- http://www.securityfocus.com/bid/29924
- http://www.securitytracker.com/id?1020407=
- http://www.securitytracker.com/id?1020408=
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43341
- https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00101.html
- https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00116.html