CVE-2008-1996

licq before 1.3.6 allows remote attackers to cause a denial of service (file-descriptor exhaustion and application crash) via a large number of connections.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00011.html
http://seclists.org/bugtraq/2008/Apr/0100.html
http://secunia.com/advisories/30055
http://secunia.com/advisories/30236
http://securityreason.com/securityalert/3851
http://www.licq.org/changeset/6146
http://www.licq.org/ticket/1623
http://www.mandriva.com/security/advisories?name=MDVSA-2008:159
http://www.openwall.com/lists/oss-security/2008/04/25/1
http://www.securityfocus.com/archive/1/490563	Exploit
http://www.securityfocus.com/archive/1/490717
http://www.securityfocus.com/bid/28679
http://www.vupen.com/english/advisories/2008/1446/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41732
https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00186.html

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:licq:licq:0.61:::::::*
	cpe:2.3:a:licq:licq:0.71:::::::*
	cpe:2.3:a:licq:licq:0.75:::::::*
	cpe:2.3:a:licq:licq:0.75.1:::::::*
	cpe:2.3:a:licq:licq:0.75.2:::::::*
	cpe:2.3:a:licq:licq:0.75.3:::::::*
	cpe:2.3:a:licq:licq:0.75.3a:::::::*
	cpe:2.3:a:licq:licq:0.75_991219:::::::*
	cpe:2.3:a:licq:licq:0.76:::::::*
	cpe:2.3:a:licq:licq:0.80:::::::*
	cpe:2.3:a:licq:licq:0.81:::::::*
	cpe:2.3:a:licq:licq:0.84a:::::::*
	cpe:2.3:a:licq:licq:0.84b:::::::*
	cpe:2.3:a:licq:licq:0.85:::::::*
	cpe:2.3:a:licq:licq:1.0:::::::*
	cpe:2.3:a:licq:licq:1.0.1:::::::*
	cpe:2.3:a:licq:licq:1.0.2:::::::*
	cpe:2.3:a:licq:licq:1.0.3:::::::*
	cpe:2.3:a:licq:licq:1.0.4:::::::*
	cpe:2.3:a:licq:licq:1.2:::::::*
	cpe:2.3:a:licq:licq:1.2.3:::::::*
	cpe:2.3:a:licq:licq:1.2.4:::::::*
	cpe:2.3:a:licq:licq:1.2.6:::::::*
	cpe:2.3:a:licq:licq:1.2.7:::::::*
	cpe:2.3:a:licq:licq:1.3.0:::::::*
	cpe:2.3:a:licq:licq:1.3.0_pre:::::::*
	cpe:2.3:a:licq:licq:1.3.2:::::::*
	cpe:2.3:a:licq:licq:1.3.2_rc:::::::*
	cpe:2.3:a:licq:licq:1.3.4:::::::*
	cpe:2.3:a:licq:licq:1.3.5:::::::*

History

No history.

Information

Published : 2008-04-28 20:05

Updated : 2017-08-08 01:30

NVD link : CVE-2008-1996

Mitre link : CVE-2008-1996

CVE.ORG link : CVE-2008-1996

JSON object : View

Products Affected

licq

licq

CWE

CWE-399

Resource Management Errors

5.0 /10