NVD

Id
6124  
Name
CVE-2008-6393  
Description
PSI Jabber client before 0.12.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a file transfer request with a negative value in a SOCKS5 option, which bypasses a signed integer check and triggers an integer overflow and a heap-based buffer overflow.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-03  
Published
2009-03-03  
Modified Date
2010-04-27  
Seq
2008-6393  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
36465 6124 CVE-2008-6393 http://bugs.gentoo.org/show_bug.cgi?id=252830  View
36466 6124 CVE-2008-6393 http://jolmos.blogspot.com/2008/12/psi-remote-integer-overflow.html  View
36467 6124 CVE-2008-6393 SUSE-SR:2009:006  View
36468 6124 CVE-2008-6393 http://sourceforge.net/project/shownotes.php?release_id=658912  View
36469 6124 CVE-2008-6393 DSA-1741  View
36470 6124 CVE-2008-6393 7555  View
36471 6124 CVE-2008-6393 [oss-security] 20090225 CVE request: Psi <0.12.1 DoS  View
36472 6124 CVE-2008-6393 20081223 [ISecAuditors Security Advisories] PSI remote integer overflow DoS  View
36473 6124 CVE-2008-6393 FEDORA-2009-2285  View
36474 6124 CVE-2008-6393 FEDORA-2009-2295  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
44462 JVNDB-2009-005469 PSI Jabber クライアントにおける整数オーバーフローの脆弱性 PSI Jabber クライアントには、整数オーバーフローの脆弱性が存在します。 CVE-2008-6393 36506 CVE-2008-6393 6124 10 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-005469.html 2009-03-03 2012-12-20 View