Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2008-0401

EPSS 25.75% · P96
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-0401

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Buffer overflow in the logging functionality of the HTTP server in IBM Tivoli Provisioning Manager for OS Deployment (TPMfOSD) before 5.1.0.3 Interim Fix 3 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via an HTTP request with a long method string to port 443/tcp.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
IBM Tivoli Provisioning Manager for OS Deployment HTTP服务器远程缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IBM Tivoli是IBM公司的管理软件。 在5.1.0.3 Interim Fix 3版本以前的IBM Tivoli Provisioning Manager 上的OS Deployment (TPMfOSD) 中的HTTP服务器的注册功能应用程序(logging functionality)中存在的缓冲区溢出漏洞会允许远程攻击者通过一个具有长程序字符串的 HTTP 请求到达tcp port 443来导致服务拒绝(后台程序运行失败)或可能执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2008-0401

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2008-0401

登录查看更多情报信息。

Same Patch Batch · n/a · 2008-01-23 · 41 CVEs total

CVE-2008-0402IBM WebSphere Business Modeler Repository 访问控制漏洞
CVE-2008-0029Cisco AVS安全配置漏洞
CVE-2008-0421Invision gallery SQL注入漏洞
CVE-2008-0394Citadel SMTP server makeuserkey()函数栈溢出漏洞
CVE-2008-0395Kayako SupportSuite 'syncml/index.php'信息泄露漏洞
CVE-2008-0396BitDefender升级服务器目录遍历漏洞
CVE-2008-0397aflog多个SQL注入漏洞
CVE-2008-0398aflog远程脚本攻击漏洞
CVE-2008-0399Toshiba Surveillix 'MeIpCamX.DLL' ActiveX控件远程栈溢出漏洞
CVE-2008-0400singapore Modern Template 'header.tpl.php'跨站脚本漏洞
CVE-2008-0028Cisco PIX/ASA 安全漏洞
CVE-2008-0403Belkin Wireless G Plus MIMO Router 访问控制漏洞
CVE-2008-0404Mantis 跨站脚本攻击漏洞
CVE-2008-0392Microsoft Visual Basic Enterprise Edition 6 DSR文件处理缓冲区溢出漏洞
CVE-2008-0393GradMan 'info.php' 目录遍历漏洞
CVE-2008-0128Apache Tomcat 'SingleSignOn' 远程信息泄露漏洞
CVE-2008-0388WP-Forum SQL注入漏洞
CVE-2008-0389IBM WebSphere Application Server serveServletsByClassnameEnabled 未明漏洞
CVE-2008-0390AuraCMS 'stat.php' 远程脚本代注入漏洞
CVE-2008-0391aliTalk 'inc/elementz.php'权限设置漏洞

Showing top 20 of 41 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2008-0401

No comments yet

Leave a comment