JVN/CVE Demo: Cveinfos

CVE

Id: 23808
CVE No.: CVE-2007-0451
Status: Candidate
Description: Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage."
Phase: Assigned (20070123)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
231343	23808	CVE-2007-0451	CONFIRM:http://spamassassin.apache.org/advisories/cve-2007-0451.txt	View
231344	23808	CVE-2007-0451	CONFIRM:http://svn.apache.org/repos/asf/spamassassin/branches/3.1/build/announcements/3.1.8.txt	View
231345	23808	CVE-2007-0451	CONFIRM:https://issues.rpath.com/browse/RPL-1073	View
231346	23808	CVE-2007-0451	FEDORA:FEDORA-2007-242	View
231347	23808	CVE-2007-0451	URL:http://fedoranews.org/cms/node/2657	View
231348	23808	CVE-2007-0451	FEDORA:FEDORA-2007-241	View
231349	23808	CVE-2007-0451	URL:http://fedoranews.org/cms/node/2659	View
231350	23808	CVE-2007-0451	GENTOO:GLSA-200703-02	View
231351	23808	CVE-2007-0451	URL:http://security.gentoo.org/glsa/glsa-200703-02.xml	View
231352	23808	CVE-2007-0451	MANDRIVA:MDKSA-2007:049	View
231353	23808	CVE-2007-0451	URL:http://www.mandriva.com/security/advisories?name=MDKSA-2007:049	View
231354	23808	CVE-2007-0451	REDHAT:RHSA-2007:0074	View
231355	23808	CVE-2007-0451	URL:http://rhn.redhat.com/errata/RHSA-2007-0074.html	View
231356	23808	CVE-2007-0451	REDHAT:RHSA-2007:0075	View
231357	23808	CVE-2007-0451	URL:http://www.redhat.com/support/errata/RHSA-2007-0075.html	View
231358	23808	CVE-2007-0451	SUSE:SUSE-SR:2007:006	View
231359	23808	CVE-2007-0451	URL:http://www.novell.com/linux/security/advisories/2007_6_sr.html	View
231360	23808	CVE-2007-0451	OVAL:oval:org.mitre.oval:def:10018	View
231361	23808	CVE-2007-0451	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10018	View
231362	23808	CVE-2007-0451	VUPEN:ADV-2007-0628	View
231363	23808	CVE-2007-0451	URL:http://www.vupen.com/english/advisories/2007/0628	View
231364	23808	CVE-2007-0451	BID:22584	View
231365	23808	CVE-2007-0451	URL:http://www.securityfocus.com/bid/22584	View
231366	23808	CVE-2007-0451	OSVDB:33207	View
231367	23808	CVE-2007-0451	URL:http://osvdb.org/33207	View
231368	23808	CVE-2007-0451	SECTRACK:1017666	View
231369	23808	CVE-2007-0451	URL:http://www.securitytracker.com/id?1017666	View
231370	23808	CVE-2007-0451	SECUNIA:24197	View
231371	23808	CVE-2007-0451	URL:http://secunia.com/advisories/24197	View
231372	23808	CVE-2007-0451	SECUNIA:24200	View
231373	23808	CVE-2007-0451	URL:http://secunia.com/advisories/24200	View
231374	23808	CVE-2007-0451	SECUNIA:24250	View
231375	23808	CVE-2007-0451	URL:http://secunia.com/advisories/24250	View
231376	23808	CVE-2007-0451	SECUNIA:24256	View
231377	23808	CVE-2007-0451	URL:http://secunia.com/advisories/24256	View
231378	23808	CVE-2007-0451	SECUNIA:24265	View
231379	23808	CVE-2007-0451	URL:http://secunia.com/advisories/24265	View
231380	23808	CVE-2007-0451	SECUNIA:24307	View
231381	23808	CVE-2007-0451	URL:http://secunia.com/advisories/24307	View
231382	23808	CVE-2007-0451	SECUNIA:24889	View
231383	23808	CVE-2007-0451	URL:http://secunia.com/advisories/24889	View
231384	23808	CVE-2007-0451	XF:spamassassin-url-dos(32536)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
51461	JVNDB-2007-000123	Samba の nss_winbind.so.1 ライブラリにおけるバッファオーバーフローの脆弱性	Samba の nss_winbind.so.1 ライブラリには、Solaris 上の winbindd デーモンでこのライブラリを使用するように指定されている場合、gethostbyname()、getipnodebyname() 関数を介して引き起こされるバッファオーバーフローの脆弱性が存在します。	CVE-2007-0453	23808	4.6		http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000123.html	View

Message	Memory use
Component initialization	1.37 MB
Controller action start	1.48 MB
Controller render start	2.28 MB
View render complete	2.75 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	6.20
Event: Controller.initialize	0.02
Event: Controller.startup	0.15
Controller action	549.41
Event: Controller.beforeRender	4.53
» Processing toolbar data	4.36
Rendering View	13.91
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	12.69
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.63
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.12
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/23808
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/23808
Remote Port	44793
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	18.191.160.52
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http Cookie	advanced-frontend=cr8rkgb22t4sjde2hrm014viv0
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	18.191.160.52
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	18.191.160.52
Unique Id	aBDIeAJCAGCiLB3UOeBUcAAAAOI
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	18.191.160.52
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	18.191.160.52
Redirect Unique Id	aBDIeAJCAGCiLB3UOeBUcAAAAOI
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	18.191.160.52
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	18.191.160.52
Redirect Redirect Unique Id	aBDIeAJCAGCiLB3UOeBUcAAAAOI
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1745930360.1666
Request Time	1745930360

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files