CVE-2008-0172

EPSS 2.17% · P84 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-0172

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The get_repeat_type function in basic_regex_creator.hpp in the Boost regex library (aka Boost.Regex) in Boost 1.33 and 1.34 allows context-dependent attackers to cause a denial of service (NULL dereference and crash) via an invalid regular expression.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Boost库 'basic_regex_creator.hpp'拒绝服务漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Boost库是一个可移植、提供源代码的C++库。 Boost库处理正则表达式时basic_regex_creator.hpp:1224的get_repeat_type()函数中存在空指针引用错误，远程攻击者可能利用此漏洞导致采用了Boost库的应用程序崩溃。具体如下： if (state->next.p->next.p->next.p == static_cast<re_alt*>(state)->alt.p) 远程攻击者可以通过向Boost提交恶意的正则表达式请求触发这些漏洞，导致拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-0172

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-0172

请登录查看更多情报信息。

http://svn.boost.org/trac/boost/changeset/42674x_refsource_CONFIRM
205955 – (CVE-2008-0171) dev-libs/boost < 1.34.1-r2 Two DoS vulnerabilities (CVE-2008-{0171,0172})x_refsource_CONFIRM
https://issues.rpath.com/browse/RPL-2143x_refsource_CONFIRM
http://svn.boost.org/trac/boost/changeset/42745x_refsource_CONFIRM
http://wiki.rpath.com/Advisories:rPSA-2008-0063x_refsource_CONFIRM
http://secunia.com/advisories/28527third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29323third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28545third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28860third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/48099third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28943third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/28705third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/27325vdb-entryx_refsource_BID
http://secunia.com/advisories/28511third-party-advisoryx_refsource_SECUNIA
http://www.ubuntu.com/usn/usn-570-1vendor-advisoryx_refsource_UBUNTU
http://www.vupen.com/english/advisories/2008/0249vdb-entryx_refsource_VUPEN
http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:032vendor-advisoryx_refsource_MANDRIVA
http://www.gentoo.org/security/en/glsa/glsa-200802-08.xmlvendor-advisoryx_refsource_GENTOO
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00004.htmlvendor-advisoryx_refsource_SUSE
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00760.htmlvendor-advisoryx_refsource_FEDORA
http://www.securityfocus.com/archive/1/488102/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2008-0172

Same Patch Batch · n/a · 2008-01-17 · 46 CVEs total

CVE-2007-6686		Gallery URL Rewrite Module管理控件未限定文件共享漏洞
CVE-2007-6689		Menalto Gallery 文件上传检验漏洞
CVE-2007-6691		Menalto Gallery 多个未明漏洞
CVE-2008-0302		apt-listchanges Unsafe Paths Library 'apt-listchanges.py'重要本地外壳程序执行漏洞
CVE-2007-6681		VideoLAN VLC’modulesdemuxsubtitle.c’远程堆溢缓冲区错误漏洞
CVE-2007-6682		VideoLAN 'modules\demux\subtitle.c'文件媒体播放器远程溢出及格式串处理漏洞
CVE-2007-6683		VLC媒体播放器浏览器插件任意文件覆盖漏洞
CVE-2007-6684		VideoLAN VLC RTSP模块拒绝服务漏洞
CVE-2007-6693		Gallery WebCam模块代理请求未限定请求方式漏洞
CVE-2007-6687		Menalto Gallery多个模块跨站脚本漏洞
CVE-2007-6688		Gallery安装程序存储目录未限定请求漏洞
CVE-2007-6685		Gallery Publish XP模块未限制文件上传漏洞
CVE-2008-0324		Cisco VPN Client IPSec Driver本地拒绝服务漏洞
CVE-2008-0027		Cisco Unified Communications Manager CTL Provider远程堆溢出漏洞
CVE-2008-0338		MiniWeb 'http.c' 目录遍历漏洞
CVE-2008-0337		MiniWeb 'http.c' 栈缓冲区溢出漏洞
CVE-2008-0336		BugTracker.NET 跨站请求伪造漏洞
CVE-2008-0335		BugTracker.NET 跨站脚本攻击漏洞
CVE-2008-0334		pmachine pro 'pm/language/spanish/preferences.php'跨站脚本攻击漏洞
CVE-2008-0333		Afterlogic WebMail Pro 路径遍历漏洞

Showing top 20 of 46 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-0172

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-0172

I. Basic Information for CVE-2008-0172

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-0172

III. Intelligence Information for CVE-2008-0172

Same Patch Batch · n/a · 2008-01-17 · 46 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-0172

Leave a comment