CyberSec.Space Logo
Back to CVE Browser

CVE-2008-2749

HIGH
7.1
CVSS Severity Score
EPSS Score0.1000%
EPSS Percentile26.33th
PublishedJun 18, 2008
Last ModifiedApr 23, 2026

Vulnerability Description

Unspecified vulnerability in cshttpd in Sun Java System Calendar Server 6 and 6.3, and Sun ONE Calendar Server 6.0, when access logging (aka service.http.commandlog.all) is enabled, allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.

Affected Platforms (CPE)

πŸ“¦
Sun

Java System Calendar Server

= 6
πŸ“¦
Sun

Java System Calendar Server

= 6
πŸ“¦
Sun

Java System Calendar Server

= 6
πŸ“¦
Sun

Java System Calendar Server

= 6.3
πŸ“¦
Sun

One Calendar Server

= 6.0

References & Advisories

πŸ”— http://secunia.com/advisories/30694
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-66-235521-1
πŸ”— http://www.securityfocus.com/bid/29763
πŸ”— http://www.securitytracker.com/id?1020299
πŸ”— http://www.vupen.com/english/advisories/2008/1857
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/43127
πŸ”— http://secunia.com/advisories/30694
πŸ”— http://sunsolve.sun.com/search/document.do?assetkey=1-66-235521-1

Related Vulnerabilities

CVE-2004-074210.0

Sun Java System Portal Server 6.2 (formerly Sun ONE) allows remote authenticated users to obtain Calendar Server privileges and mo...

CVE-2009-12195.0

Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 through 6.3-7.01 allow...

CVE-2009-12184.3

Multiple cross-site scripting (XSS) vulnerabilities in Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java...

CVE-2008-665110.0

Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote attackers to inject arbitrary PHP c...