CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-0445

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.1820%
EPSS Percentile14.86th
Published2008年1月25日
Last Modified2026年4月23日

Vulnerability Description

The replace_inline_img function in elogd in Electronic Logbook (ELOG) before 2.7.1 allows remote attackers to cause a denial of service (infinite loop) via crafted logbook entries. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦
Elog

Elog

= 1.0.0
📦
Elog

Elog

= 1.0.1
📦
Elog

Elog

= 1.0.2
📦
Elog

Elog

= 1.0.3
📦
Elog

Elog

= 1.0.4
📦
Elog

Elog

= 1.0.5
📦
Elog

Elog

= 1.1.0
📦
Elog

Elog

= 1.1.1
📦
Elog

Elog

= 1.1.2
📦
Elog

Elog

= 1.1.3
📦
Elog

Elog

= 1.2.0
📦
Elog

Elog

= 1.2.1
📦
Elog

Elog

= 1.2.2
📦
Elog

Elog

= 1.2.3
📦
Elog

Elog

= 1.2.4
📦
Elog

Elog

= 1.2.5
📦
Elog

Elog

= 1.2.6
📦
Elog

Elog

= 1.3.0
📦
Elog

Elog

= 1.3.1
📦
Elog

Elog

= 1.3.2
📦
Elog

Elog

= 1.3.3
📦
Elog

Elog

= 1.3.4
📦
Elog

Elog

= 1.3.5
📦
Elog

Elog

= 1.3.6
📦
Elog

Elog

= 2.0.0
📦
Elog

Elog

= 2.0.1
📦
Elog

Elog

= 2.0.2
📦
Elog

Elog

= 2.0.3
📦
Elog

Elog

= 2.0.4
📦
Elog

Elog

= 2.0.5
📦
Elog

Elog

= 2.1.0
📦
Elog

Elog

= 2.1.1
📦
Elog

Elog

= 2.1.2
📦
Elog

Elog

= 2.1.3
📦
Elog

Elog

= 2.2.0
📦
Elog

Elog

= 2.2.1
📦
Elog

Elog

= 2.2.2
📦
Elog

Elog

= 2.2.3
📦
Elog

Elog

= 2.2.4
📦
Elog

Elog

= 2.2.5
📦
Elog

Elog

= 2.3.0
📦
Elog

Elog

= 2.3.1
📦
Elog

Elog

= 2.3.2
📦
Elog

Elog

= 2.3.3
📦
Elog

Elog

= 2.3.4
📦
Elog

Elog

= 2.3.5
📦
Elog

Elog

= 2.3.6
📦
Elog

Elog

= 2.3.7
📦
Elog

Elog

= 2.3.8
📦
Elog

Elog

= 2.3.9
📦
Elog

Elog

= 2.4.0
📦
Elog

Elog

= 2.4.1
📦
Elog

Elog

= 2.5.0
📦
Elog

Elog

= 2.5.1
📦
Elog

Elog

= 2.5.2
📦
Elog

Elog

= 2.5.3
📦
Elog

Elog

= 2.5.4
📦
Elog

Elog

= 2.5.5
📦
Elog

Elog

= 2.5.6
📦
Elog

Elog

= 2.5.7
📦
Elog

Elog

= 2.5.8
📦
Elog

Elog

= 2.5.9
📦
Elog

Elog

= 2.6.0
📦
Elog

Elog

= 2.6.1
📦
Elog

Elog

= 2.6.2
📦
Elog

Elog

= 2.6.3
📦
Elog

Elog

= 2.6.4
📦
Elog

Elog

= 2.6.5

References & Advisories

🔗 http://secunia.com/advisories/28589
🔗 http://www.securityfocus.com/bid/27399
🔗 http://www.vupen.com/english/advisories/2008/0265
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/39824
🔗 http://secunia.com/advisories/28589
🔗 http://www.securityfocus.com/bid/27399
🔗 http://www.vupen.com/english/advisories/2008/0265
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/39824

相关漏洞威胁

CVE-2008-700410.0

Buffer overflow in Electronic Logbook (ELOG) before 2.7.1 has unknown impact and attack vectors, possibly related to elog.c.

CVE-2005-44397.8

Buffer overflow in ELOG elogd 2.6.0-beta4 allows remote attackers to cause a denial of service (application crash) and possibly ex...

CVE-2019-39947.5

ELOG 3.1.4-57bea22 and below is affected by a denial of service vulnerability due to a use after free. A remote unauthenticated at...

CVE-2019-39957.5

ELOG 3.1.4-57bea22 and below is affected by a denial of service vulnerability due to a NULL pointer dereference. A remote unauthen...