NVD

Id
5418  
Name
CVE-2008-5676  
Description
Multiple unspecified vulnerabilities in the ModSecurity (aka mod_security) module 2.5.0 through 2.5.5 for the Apache HTTP Server, when SecCacheTransformations is enabled, allow remote attackers to cause a denial of service (daemon crash) or bypass the product"s functionality via unknown vectors related to "transformation caching."  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-01-03  
Published
2008-12-18  
Modified Date
2011-03-07  
Seq
2008-5676  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
33928 5418 CVE-2008-5676 http://blog.modsecurity.org/2008/08/transformation.html  View
33929 5418 CVE-2008-5676 http://freshmeat.net/projects/modsecurity/?branch_id=34901&release_id=282329  View
33930 5418 CVE-2008-5676 ADV-2008-2795  View
33931 5418 CVE-2008-5676 modsecurity-sct-security-bypass(45770)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
37035 JVNDB-2010-002815 ModSecurity モジュールにおけるサービス運用妨害 (DoS) の脆弱性 ModSecurity モジュールには、SecCacheTransformations が有効の際、サービス運用妨害 (DoS) 状態となる、またはプロダクトの機能を回避される脆弱性が存在します。 CVE-2008-5676 35789 CVE-2008-5676 5418 5 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-002815.html 2010-08-01 2011-06-07 View