JVN/CVE Demo: Cveinfos

CVE

Id: 33259
CVE No.: CVE-2008-3142
Status: Candidate
Description: Multiple buffer overflows in Python 2.5.2 and earlier on 32bit platforms allow context-dependent attackers to cause a denial of service (crash) or have unspecified other impact via a long string that leads to incorrect memory allocation during Unicode string processing, related to the unicode_resize function and the PyMem_RESIZE macro.
Phase: Assigned (20080710)
Votes: None (candidate not yet proposed)
Comments

Actions

Related CVE References

Id	CVE Id	CVE No.	Reference	Actions
361902	33259	CVE-2008-3142	BUGTRAQ:20080813 rPSA-2008-0243-1 idle python	View
361903	33259	CVE-2008-3142	URL:http://www.securityfocus.com/archive/1/archive/1/495445/100/0/threaded	View
361904	33259	CVE-2008-3142	BUGTRAQ:20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components	View
361905	33259	CVE-2008-3142	URL:http://www.securityfocus.com/archive/1/archive/1/507985/100/0/threaded	View
361906	33259	CVE-2008-3142	CONFIRM:http://bugs.gentoo.org/show_bug.cgi?id=232137	View
361907	33259	CVE-2008-3142	CONFIRM:http://bugs.python.org/file10825/issue2620-gps02-patch.txt	View
361908	33259	CVE-2008-3142	CONFIRM:http://bugs.python.org/issue2620	View
361909	33259	CVE-2008-3142	CONFIRM:http://wiki.rpath.com/Advisories:rPSA-2008-0243	View
361910	33259	CVE-2008-3142	CONFIRM:http://www.novell.com/support/search.do?cmd=displayKC&docType=kc&externalId=InfoDocument-patchbuilder-readme5032900	View
361911	33259	CVE-2008-3142	CONFIRM:http://support.apple.com/kb/HT3438	View
361912	33259	CVE-2008-3142	CONFIRM:http://www.vmware.com/security/advisories/VMSA-2009-0016.html	View
361913	33259	CVE-2008-3142	APPLE:APPLE-SA-2009-02-12	View
361914	33259	CVE-2008-3142	URL:http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html	View
361915	33259	CVE-2008-3142	DEBIAN:DSA-1667	View
361916	33259	CVE-2008-3142	URL:http://www.debian.org/security/2008/dsa-1667	View
361917	33259	CVE-2008-3142	GENTOO:GLSA-200807-16	View
361918	33259	CVE-2008-3142	URL:http://security.gentoo.org/glsa/glsa-200807-16.xml	View
361919	33259	CVE-2008-3142	MANDRIVA:MDVSA-2008:163	View
361920	33259	CVE-2008-3142	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:163	View
361921	33259	CVE-2008-3142	MANDRIVA:MDVSA-2008:164	View
361922	33259	CVE-2008-3142	URL:http://www.mandriva.com/security/advisories?name=MDVSA-2008:164	View
361923	33259	CVE-2008-3142	SLACKWARE:SSA:2008-217-01	View
361924	33259	CVE-2008-3142	URL:http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.525289	View
361925	33259	CVE-2008-3142	SUSE:SUSE-SR:2008:017	View
361926	33259	CVE-2008-3142	URL:http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html	View
361927	33259	CVE-2008-3142	UBUNTU:USN-632-1	View
361928	33259	CVE-2008-3142	URL:http://www.ubuntu.com/usn/usn-632-1	View
361929	33259	CVE-2008-3142	BID:30491	View
361930	33259	CVE-2008-3142	URL:http://www.securityfocus.com/bid/30491	View
361931	33259	CVE-2008-3142	OVAL:oval:org.mitre.oval:def:11466	View
361932	33259	CVE-2008-3142	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11466	View
361933	33259	CVE-2008-3142	OVAL:oval:org.mitre.oval:def:8422	View
361934	33259	CVE-2008-3142	URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:8422	View
361935	33259	CVE-2008-3142	SECUNIA:32793	View
361936	33259	CVE-2008-3142	URL:http://secunia.com/advisories/32793	View
361937	33259	CVE-2008-3142	SECUNIA:37471	View
361938	33259	CVE-2008-3142	URL:http://secunia.com/advisories/37471	View
361939	33259	CVE-2008-3142	VUPEN:ADV-2008-2288	View
361940	33259	CVE-2008-3142	URL:http://www.vupen.com/english/advisories/2008/2288	View
361941	33259	CVE-2008-3142	SECUNIA:31358	View
361942	33259	CVE-2008-3142	URL:http://secunia.com/advisories/31358	View
361943	33259	CVE-2008-3142	SECUNIA:31305	View
361944	33259	CVE-2008-3142	URL:http://secunia.com/advisories/31305	View
361945	33259	CVE-2008-3142	SECUNIA:31332	View
361946	33259	CVE-2008-3142	URL:http://secunia.com/advisories/31332	View
361947	33259	CVE-2008-3142	SECUNIA:31365	View
361948	33259	CVE-2008-3142	URL:http://secunia.com/advisories/31365	View
361949	33259	CVE-2008-3142	SECUNIA:31518	View
361950	33259	CVE-2008-3142	URL:http://secunia.com/advisories/31518	View
361951	33259	CVE-2008-3142	SECUNIA:31687	View
361952	33259	CVE-2008-3142	URL:http://secunia.com/advisories/31687	View
361953	33259	CVE-2008-3142	SECUNIA:31473	View
361954	33259	CVE-2008-3142	URL:http://secunia.com/advisories/31473	View
361955	33259	CVE-2008-3142	SECUNIA:33937	View
361956	33259	CVE-2008-3142	URL:http://secunia.com/advisories/33937	View
361957	33259	CVE-2008-3142	VUPEN:ADV-2009-3316	View
361958	33259	CVE-2008-3142	URL:http://www.vupen.com/english/advisories/2009/3316	View
361959	33259	CVE-2008-3142	XF:python-multiple-bo(44173)	View
361960	33259	CVE-2008-3142	URL:http://xforce.iss.net/xforce/xfdb/44173	View
361961	33259	CVE-2008-3142	XF:python-unicode-bo(44170)	View

Related JVN

Id	JVN No.	Title	Summary	CVE No.	CVE Id	CVSS_v2	CVSS_v3	JVN URL	Actions
46488	JVNDB-2008-001798	Wireshark の packet_ncp2222.inc におけるバッファオーバーフローの脆弱性	Wireshark の packet_ncp2222.inc には、NCP パケットの処理に不備があることにより、バッファオーバーフローの脆弱性が存在します。	CVE-2008-3146	33259	5		http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001798.html	View

Message	Memory use
Component initialization	1.39 MB
Controller action start	1.49 MB
Controller render start	2.35 MB
View render complete	2.85 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	6.25
Event: Controller.initialize	0.02
Event: Controller.startup	0.10
Controller action	399.09
Event: Controller.beforeRender	6.06
» Processing toolbar data	5.98
Rendering View	18.58
» Event: View.beforeRender	0.02
» Rendering APP/View/Cveinfos/view.ctp	17.57
» Event: View.afterRender	0.02
» Event: View.beforeLayout	0.02
» Rendering APP/View/Layouts/default.ctp	0.55
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	0.11
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/cveinfos/view/33259
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/cveinfos/view/33259
Remote Port	56620
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	216.73.216.173
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Connection	close
Http Cache Control	max-age=259200
Http X Forwarded For	10.3.25.50
Http Via	1.1 squid-proxy-5b5d847c96-mtcd4 (squid/6.10)
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Suspectharddos	1
Suspectdos	1
X Dostranslated Ip	216.73.216.173
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	216.73.216.173
Unique Id	aMNh0hAldYGBHIufB8GDiwAAAPk
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Suspectharddos	1
Redirect Suspectdos	1
Redirect X Dostranslated Ip	216.73.216.173
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	216.73.216.173
Redirect Unique Id	aMNh0hAldYGBHIufB8GDiwAAAPk
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect Suspectharddos	1
Redirect Redirect Suspectdos	1
Redirect Redirect X Dostranslated Ip	216.73.216.173
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	216.73.216.173
Redirect Redirect Unique Id	aMNh0hAldYGBHIufB8GDiwAAAPk
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1757635026.0033
Request Time	1757635026

CVE

Actions

Related CVE References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files