Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5280

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-5280
Last Modified 07 Mar 2011 10:14:17
Published 28 Nov 2008 09:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5280

Summary

The Local ZIM Server in Zilab Chat and Instant Messaging (ZIM) Server 2.0 and 2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted requests without required parameters.

Vulnerable Systems

Application

  • Zilab Zim Server 2.0

  • Zilab Zim Server 2.1


References

VUPEN - ADV-2008-0665

VUPEN - ADV-2008-0664

BID - 27940

SECUNIA - 29062

MISC - http://aluigi.org/poc/zilabzcsx.zip

MISC - http://aluigi.altervista.org/adv/zilabzcsx-adv.txt


Last Updated: 27 May 2016 10:48:46