JVN/CVE Demo: Nvdinfos

NVD

Id: 3751
Name: CVE-2008-3889
Description: Postfix 2.4 before 2.4.9, 2.5 before 2.5.5, and 2.6 before 2.6-20080902, when used with the Linux 2.6 kernel, leaks epoll file descriptors during execution of "non-Postfix" commands, which allows local users to cause a denial of service (application slowdown or exit) via a crafted command, as demonstrated by a command in a .forward file.
Reject
CVSS Version: 2
CVSS Score: 2.1
Severity: Low
CVSS Base Score: 2.1
CVSS Impact Subscore: 2.9
CVSS Exploit Subscore: 3.9
CVSS Vector: (AV:L/AC:L/Au:N/C:N/I:N/A:P)
Pub Date: 2017-01-03
Published: 2008-09-12
Modified Date: 2012-03-19
Seq: 2008-3889

Actions

Related NVD References

Id	NVD Id	NVD No.	Reference	Actions
23733	3751	CVE-2008-3889	SUSE-SR:2008:018	View
23734	3751	CVE-2008-3889	GLSA-200809-09	View
23735	3751	CVE-2008-3889	4239	View
23736	3751	CVE-2008-3889	1020800	View
23737	3751	CVE-2008-3889	http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0311	View
23738	3751	CVE-2008-3889	MDVSA-2008:190	View
23739	3751	CVE-2008-3889	6472	View
23740	3751	CVE-2008-3889	http://www.postfix.org/announcements/20080902.html	View
23741	3751	CVE-2008-3889	20080902 Postfix Linux-only local denial of service	View
23742	3751	CVE-2008-3889	20080916 [Suspected Spam][CVE-2008-4042] Postfix Linux-only local denial of service - PoC	View
23743	3751	CVE-2008-3889	20081104 rPSA-2008-0311-1 postfix	View
23744	3751	CVE-2008-3889	30977	View
23745	3751	CVE-2008-3889	USN-642-1	View
23746	3751	CVE-2008-3889	http://www.wekk.net/research/CVE-2008-3889/	View
23747	3751	CVE-2008-3889	postfix-filedescriptor-dos(44865)	View
23748	3751	CVE-2008-3889	FEDORA-2008-8595	View
23749	3751	CVE-2008-3889	FEDORA-2008-8593	View

Related JVN

Id	Name	Title	Summary	Cveinfo Name	Cveinfo Id	Nvdinfo Name	Nvdinfo Id	Cvssv2	Cvssv3	Jvnurl	Published Date	Last Updated Date	Actions
46366	JVNDB-2008-001676	Postfix の epoll 関数におけるサービス運用妨害 (DoS) の脆弱性	Linux Kernel 2.6 上で稼動する Postfix には、Postfix に実装されていないコマンドを実行した場合、epoll 関数においてファイルディスクリプタの処理に不備があり、サービス運用妨害 (DoS) 状態となる脆弱性が存在します。	CVE-2008-3889	34002	CVE-2008-3889	3751	2.1		http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-001676.html	2008-09-02	2008-09-26	View

Message	Memory use
Component initialization	1.38 MB
Controller action start	1.48 MB
Controller render start	2.28 MB
View render complete	9.33 MB

Message	Time in ms	Graph
Core Processing (Derived from $_SERVER["REQUEST_TIME"])	4.54
Event: Controller.initialize	0.02
Event: Controller.startup	0.08
Controller action	313.13
Event: Controller.beforeRender	5.16
» Processing toolbar data	5.05
Rendering View	364.65
» Event: View.beforeRender	0.02
» Rendering APP/View/Nvdinfos/view.ctp	358.10
» Event: View.afterRender	0.03
» Event: View.beforeLayout	0.03
» Rendering APP/View/Layouts/default.ctp	5.27
» » Rendering CORE/Cake/View/Elements/sql_dump.ctp	2.15
Event: View.afterLayout	0.00

Constant	Value
APP	/virtual/inogo77/public_html/jvn/app/
APP_DIR	app
APPLIBS	/virtual/inogo77/public_html/jvn/app/Lib/
CACHE	/virtual/inogo77/public_html/jvn/app/tmp/cache/
CAKE	/virtual/inogo77/public_html/jvn/lib/Cake/
CAKE_CORE_INCLUDE_PATH	/virtual/inogo77/public_html/jvn/lib
CORE_PATH	/virtual/inogo77/public_html/jvn/lib/
CAKE_VERSION	2.6.0
CSS	/virtual/inogo77/public_html/jvn/app/webroot/css/
CSS_URL	css/
DS	/
FULL_BASE_URL	http://inogo77.s500.xrea.com
IMAGES	/virtual/inogo77/public_html/jvn/app/webroot/img/
IMAGES_URL	img/
JS	/virtual/inogo77/public_html/jvn/app/webroot/js/
JS_URL	js/
LOGS	/virtual/inogo77/public_html/jvn/app/tmp/logs/
ROOT	/virtual/inogo77/public_html/jvn
TESTS	/virtual/inogo77/public_html/jvn/app/Test/
TMP	/virtual/inogo77/public_html/jvn/app/tmp/
VENDORS	/virtual/inogo77/public_html/jvn/vendors/
WEBROOT_DIR	webroot
WWW_ROOT	/virtual/inogo77/public_html/jvn/app/webroot/

Environment Variable	Value
Php Version	5.6.40
Phprc	php56.ini
Php Fcgi Children	1
Pwd	/virtual/inogo77/public_html/.fast-cgi-bin
Php Fcgi Max Requests	10000
Shlvl	0
Path	/usr/local/bin:/usr/bin:/bin
Http Connection	close
Script Name	/jvn/app/webroot/index.php
Request Uri	/jvn/nvdinfos/view/3751
Query String
Request Method	GET
Server Protocol	HTTP/1.1
Gateway Interface	CGI/1.1
Redirect Url	/jvn/app/webroot/nvdinfos/view/3751
Remote Port	52177
Script Filename	/virtual/inogo77/public_html/jvn/app/webroot/index.php
Server Admin	[no address given]
Context Document Root	/virtual/inogo77/public_html
Context Prefix
Request Scheme	http
Document Root	/virtual/inogo77/public_html
Remote Addr	18.191.229.254
Server Port	80
Server Addr	160.251.151.205
Server Name	inogo77.s500.xrea.com
Server Software	Apache
Server Signature
Http Host	inogo77.s500.xrea.com
Http Accept Encoding	gzip, br, zstd, deflate
Http Cookie	advanced-frontend=bk2n6p0np9teti06kbetdcn7t4
Http User Agent	Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)
Http Accept	/
Gem Home	/usr/local/rvm/gems/ruby-2.3.0
X Dostranslated Ip	18.191.229.254
Mm Country Code	US
Mmdb Info	result found
Mmdb Addr	18.191.229.254
Unique Id	aCypMdbaNGhcaUMtI8EjtAAAAUs
Redirect Status	200
Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect X Dostranslated Ip	18.191.229.254
Redirect Mm Country Code	US
Redirect Mmdb Info	result found
Redirect Mmdb Addr	18.191.229.254
Redirect Unique Id	aCypMdbaNGhcaUMtI8EjtAAAAUs
Redirect Redirect Status	200
Redirect Redirect Gem Home	/usr/local/rvm/gems/ruby-2.3.0
Redirect Redirect X Dostranslated Ip	18.191.229.254
Redirect Redirect Mm Country Code	US
Redirect Redirect Mmdb Info	result found
Redirect Redirect Mmdb Addr	18.191.229.254
Redirect Redirect Unique Id	aCypMdbaNGhcaUMtI8EjtAAAAUs
Fcgi Role	RESPONDER
Php Self	/jvn/app/webroot/index.php
Request Time Float	1747757361.7942
Request Time	1747757361

NVD

Actions

Related NVD References

Related JVN

Request History

Session

Request

Cake Params

Post data

Query string

Cookie

Current Route

Sql Logs

default

Memory

Timers

Logs

View Variables

App Constants

CakePHP Constants

PHP Environment

Included Files

Include Paths

Included Files