JVN/CVE Demo: Cveinfos

CVE

Id: 31225
CVE No.: CVE-2008-1108
Status: Candidate
Description: Buffer overflow in Evolution 2.22.1, when the ITip Formatter plugin is disabled, allows remote attackers to execute arbitrary code via a long timezone string in an iCalendar attachment.
Phase: Assigned (20080229)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
333241	31225	CVE-2008-1108	MISC:http://secunia.com/secunia_research/2008-22/advisory/	View
333242	31225	CVE-2008-1108	FEDORA:FEDORA-2008-4990	View
333243	31225	CVE-2008-1108	URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00157.html	View
333244	31225	CVE-2008-1108	FEDORA:FEDORA-2008-5016	View
333245	31225	CVE-2008-1108	URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00178.html	View
333246	31225	CVE-2008-1108	FEDORA:FEDORA-2008-5018	View
333247	31225	CVE-2008-1108	URL:https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00179.html	View
333248	31225	CVE-2008-1108	GENTOO:GLSA-200806-06	View
333249	31225	CVE-2008-1108	URL:http://security.gentoo.org/glsa/glsa-200806-06.xml	View
333250	31225	CVE-2008-1108	MANDRIVA:MDVSA-2008:111	View
333251	31225	CVE-2008-1108	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:111	View
333252	31225	CVE-2008-1108	REDHAT:RHSA-2008:0514	View
333253	31225	CVE-2008-1108	URL:http://www.redhat.com/support/errata/RHSA-2008-0514.html	View
333254	31225	CVE-2008-1108	REDHAT:RHSA-2008:0515	View
333255	31225	CVE-2008-1108	URL:http://www.redhat.com/support/errata/RHSA-2008-0515.html	View
333256	31225	CVE-2008-1108	REDHAT:RHSA-2008:0516	View
333257	31225	CVE-2008-1108	URL:http://www.redhat.com/support/errata/RHSA-2008-0516.html	View
333258	31225	CVE-2008-1108	REDHAT:RHSA-2008:0517	View
333259	31225	CVE-2008-1108	URL:http://www.redhat.com/support/errata/RHSA-2008-0517.html	View
333260	31225	CVE-2008-1108	SUSE:SUSE-SA:2008:028	View
333261	31225	CVE-2008-1108	URL:http://lists.opensuse.org/opensuse-security-announce/2008-06/msg00003.html	View
333262	31225	CVE-2008-1108	UBUNTU:USN-615-1	View
333263	31225	CVE-2008-1108	URL:http://www.ubuntu.com/usn/usn-615-1	View
333264	31225	CVE-2008-1108	BID:29527	View
333265	31225	CVE-2008-1108	URL:http://www.securityfocus.com/bid/29527	View
333266	31225	CVE-2008-1108	OVAL:oval:org.mitre.oval:def:10471	View
333267	31225	CVE-2008-1108	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10471	View
333268	31225	CVE-2008-1108	VUPEN:ADV-2008-1732	View
333269	31225	CVE-2008-1108	URL:http://www.vupen.com/english/advisories/2008/1732/references	View
333270	31225	CVE-2008-1108	SECTRACK:1020169	View
333271	31225	CVE-2008-1108	URL:http://www.securitytracker.com/id?1020169	View
333272	31225	CVE-2008-1108	SECUNIA:30298	View
333273	31225	CVE-2008-1108	URL:http://secunia.com/advisories/30298	View
333274	31225	CVE-2008-1108	SECUNIA:30571	View
333275	31225	CVE-2008-1108	URL:http://secunia.com/advisories/30571	View
333276	31225	CVE-2008-1108	SECUNIA:30527	View
333277	31225	CVE-2008-1108	URL:http://secunia.com/advisories/30527	View
333278	31225	CVE-2008-1108	SECUNIA:30536	View
333279	31225	CVE-2008-1108	URL:http://secunia.com/advisories/30536	View
333280	31225	CVE-2008-1108	SECUNIA:30702	View
333281	31225	CVE-2008-1108	URL:http://secunia.com/advisories/30702	View
333282	31225	CVE-2008-1108	SECUNIA:30716	View
333283	31225	CVE-2008-1108	URL:http://secunia.com/advisories/30716	View
333284	31225	CVE-2008-1108	SECUNIA:30564	View
333285	31225	CVE-2008-1108	URL:http://secunia.com/advisories/30564	View
333286	31225	CVE-2008-1108	XF:evolution-icalendar-bo(42824)	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.32 MB
View render complete	2.79 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	2.64
Event: Controller.initialize	0.02
Event: Controller.startup	0.06
Controller action	413.75
Event: Controller.beforeRender	4.94
» Processing toolbar data	4.84
Rendering View	14.37
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	13.38
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.54
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.09
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/31225
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/31225
Remote Port	35992
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.9
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.1.185.124
Http Via	1.1 squid-proxy-5b5d847c96-kfhtb (squid/6.13)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.9
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.9
Unique Id	aSU_j4x5jP6EbZ0xyDJ4swAAAF8
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.9
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.9
Redirect Unique Id	aSU_j4x5jP6EbZ0xyDJ4swAAAF8
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.9
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.9
Redirect Redirect Unique Id	aSU_j4x5jP6EbZ0xyDJ4swAAAF8
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1764048783.0155
Request Time	1764048783

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files