NVD

Id
2851  
Name
CVE-2008-2957  
Description
The UPnP functionality in Pidgin 2.0.0, and possibly other versions, allows remote attackers to trigger the download of arbitrary files and cause a denial of service (memory or disk consumption) via a UDP packet that specifies an arbitrary URL.  
Reject
 
CVSS Version
2  
CVSS Score
6.4  
Severity
Medium  
CVSS Base Score
6.4  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:P/A:P)  
Pub Date
2017-01-03  
Published
2008-07-01  
Modified Date
2013-11-02  
Seq
2008-2957  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
18157 2851 CVE-2008-2957 http://crisp.cs.du.edu/?q=ca2007-1  View
18158 2851 CVE-2008-2957 oval:org.mitre.oval:def:17599  View
18159 2851 CVE-2008-2957 oval:org.mitre.oval:def:9076  View
18160 2851 CVE-2008-2957 http://support.avaya.com/elmodocs2/security/ASA-2008-493.htm  View
18161 2851 CVE-2008-2957 MDVSA-2009:025  View
18162 2851 CVE-2008-2957 [oss-security] 20080627 CVE Request (pidgin)  View
18163 2851 CVE-2008-2957 RHSA-2008:1023  View
18164 2851 CVE-2008-2957 29985  View
18165 2851 CVE-2008-2957 USN-675-1  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
46915 JVNDB-2008-002225 Pidgin における UDP パケットの処理に関するサービス運用妨害 (DoS) の脆弱性 Pidgin の UPnP 機能には、UDP パケットの処理に不備があるため、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。 CVE-2008-2957 33070 CVE-2008-2957 2851 6.4 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-002225.html 2008-07-01 2009-01-30 View