CyberSec.Space Logo
Back to CVE Browser

CVE-2008-5280

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.0240%
EPSS Percentile19.03th
PublishedNov 29, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

The Local ZIM Server in Zilab Chat and Instant Messaging (ZIM) Server 2.0 and 2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted requests without required parameters.

Affected Platforms (CPE)

πŸ“¦
Zilab

Zim Server

<= 2.1
πŸ“¦
Zilab

Zim Server

= 2.0

References & Advisories

πŸ”— http://aluigi.altervista.org/adv/zilabzcsx-adv.txt
πŸ”— http://aluigi.org/poc/zilabzcsx.zip
πŸ”— http://secunia.com/advisories/29062
πŸ”— http://www.securityfocus.com/bid/27940
πŸ”— http://www.vupen.com/english/advisories/2008/0664
πŸ”— http://www.vupen.com/english/advisories/2008/0665
πŸ”— http://aluigi.altervista.org/adv/zilabzcsx-adv.txt
πŸ”— http://aluigi.org/poc/zilabzcsx.zip

Related Vulnerabilities

CVE-2008-527910.0

The Local ZIM Server (zcs.exe) in Zilab Chat and Instant Messaging (ZIM) Server 2.1 and earlier allow remote attackers to execute ...

CVE-2008-131010.0

Directory traversal vulnerability in the TFTP server in PacketTrap Networks pt360 Tool Suite 1.1.33.1.0, and other versions before...

CVE-2008-130710.0

Heap-based buffer overflow in the KUpdateObj2 Class ActiveX control in UpdateOcx2.dll in Beijing KingSoft Antivirus Online Update ...

CVE-2008-132010.0

Multiple buffer overflows in ASG-Sentry Network Manager 7.0.0 and earlier allow remote attackers to execute arbitrary code or caus...