CyberSec.Space Logo
CVEブラウザに戻る

CVE-2008-2423

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1690%
EPSS Percentile6.58th
Published2008年5月23日
Last Modified2026年4月23日

Vulnerability Description

Unspecified vulnerability in Interchange before 5.6.0 and before 5.5.2 allows remote attackers to cause a denial of service via crafted HTTP requests. NOTE: this might overlap CVE-2007-2635.

Affected Platforms (CPE)

📦
Interchange Development Group

Interchange

= 4.8.0
📦
Interchange Development Group

Interchange

= 4.8.1
📦
Interchange Development Group

Interchange

= 4.8.2
📦
Interchange Development Group

Interchange

= 4.8.3
📦
Interchange Development Group

Interchange

= 4.8.4
📦
Interchange Development Group

Interchange

= 4.8.5
📦
Interchange Development Group

Interchange

= 4.8.6
📦
Interchange Development Group

Interchange

= 4.8.7
📦
Interchange Development Group

Interchange

= 4.8.8
📦
Interchange Development Group

Interchange

= 4.8.9
📦
Interchange Development Group

Interchange

= 4.9.3
📦
Interchange Development Group

Interchange

= 4.9.4
📦
Interchange Development Group

Interchange

= 4.9.5
📦
Interchange Development Group

Interchange

= 4.9.6
📦
Interchange Development Group

Interchange

= 4.9.8
📦
Interchange Development Group

Interchange

= 4.9.9
📦
Interchange Development Group

Interchange

= 5.0
📦
Interchange Development Group

Interchange

= 5.0.1
📦
Interchange Development Group

Interchange

= 5.0.2
📦
Interchange Development Group

Interchange

= 5.1
📦
Interchange Development Group

Interchange

= 5.1.1
📦
Interchange Development Group

Interchange

= 5.2
📦
Interchange Development Group

Interchange

= 5.2.0
📦
Interchange Development Group

Interchange

= 5.4.1
📦
Interchange Development Group

Interchange

= 5.5.1
📦
Interchange Development Group

Interchange

= 5.5.2
📦
Interchange Development Group

Interchange

= 5.5.3

References & Advisories

🔗 http://ftp.icdevgroup.org/interchange/5.6/ANNOUNCEMENT-5.6.0.txt
🔗 http://ftp.icdevgroup.org/pub/interchange/5.5/ANNOUNCEMENT-5.5.2.txt
🔗 http://secunia.com/advisories/30346
🔗 http://www.securityfocus.com/bid/28987
🔗 http://www.securityfocus.com/bid/29334
🔗 http://www.vupen.com/english/advisories/2008/1621/references
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/42120
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/42580

関連する脆弱性情報

CVE-2001-037210.0

Akopia Interchange 4.5.3 through 4.6.3 installs demo stores with a default group account :backup with no password, which allows a ...

CVE-2008-242410.0

Unspecified vulnerability in the 404 error page for the "Standard demo" in Interchange before 5.6.0 and before 5.5.2 has unknown i...

CVE-2008-14449.3

Stack-based buffer overflow in Microsoft DirectX 7.0 and 8.1 on Windows 2000 SP4 allows remote attackers to execute arbitrary code...

CVE-2007-39018.5

Stack-based buffer overflow in the DirectShow Synchronized Accessible Media Interchange (SAMI) parser in quartz.dll for Microsoft ...