CVE-2008-1372

EPSS 7.74% · P92 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-1372

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

bzlib.c in bzip2 before 1.0.5 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted file that triggers a buffer over-read, as demonstrated by the PROTOS GENOME test suite for Archive Formats.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

bzip2 'bzlib.c' 未明文件全文溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

1.0.5以前的bzip2中的bzlib.c会允许用户协助式的远程攻击者通过一个精心设计的可以触发一个全文溢出的文件(例如，Archive Formats PROTOS GENOME test suite)，来引起拒绝服务(崩溃)。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-1372

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-1372

Please Login to view more intelligence information

Traficomin Kyberturvallisuuskeskus | Kyberturvallisuuskeskusx_refsource_MISC
http://www.ipcop.org/index.php?name=News&file=article&sid=40x_refsource_CONFIRM
http://www.ee.oulu.fi/research/ouspg/protos/testing/c10/archive/x_refsource_MISC
http://kb.vmware.com/kb/1007198x_refsource_CONFIRM
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0118x_refsource_CONFIRM
http://kb.vmware.com/kb/1006982x_refsource_CONFIRM
http://www.bzip.org/CHANGESx_refsource_CONFIRM
http://kb.vmware.com/kb/1007504x_refsource_CONFIRM
https://bugs.gentoo.org/attachment.cgi?id=146488&action=viewx_refsource_CONFIRM
http://support.apple.com/kb/HT3757x_refsource_CONFIRM
http://secunia.com/advisories/31869third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29497third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29940third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29677third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29475third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29506third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29656third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29410third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/29698third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/31878third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/36096third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/28286vdb-entryx_refsource_BID
http://secunia.com/advisories/31204third-party-advisoryx_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-26-241786-1vendor-advisoryx_refsource_SUNALERT
http://www.securitytracker.com/id?1020867vdb-entryx_refsource_SECTRACK
https://usn.ubuntu.com/590-1/vendor-advisoryx_refsource_UBUNTU
http://www.kb.cert.org/vuls/id/813451third-party-advisoryx_refsource_CERT-VN
http://www.us-cert.gov/cas/techalerts/TA09-218A.htmlthird-party-advisoryx_refsource_CERT
http://www.vupen.com/english/advisories/2008/2557vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2008/0915vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2009/2172vdb-entryx_refsource_VUPEN
http://www.redhat.com/support/errata/RHSA-2008-0893.htmlvendor-advisoryx_refsource_REDHAT
http://www.gentoo.org/security/en/glsa/glsa-200804-02.xmlvendor-advisoryx_refsource_GENTOO
http://www.slackware.org/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.473263vendor-advisoryx_refsource_SLACKWARE
http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.htmlvendor-advisoryx_refsource_SUSE
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00225.htmlvendor-advisoryx_refsource_FEDORA
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00165.htmlvendor-advisoryx_refsource_FEDORA
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-004.txt.ascvendor-advisoryx_refsource_NETBSD
http://lists.apple.com/archives/security-announce/2009/Aug/msg00001.htmlvendor-advisoryx_refsource_APPLE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6467vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10067vdb-entrysignaturex_refsource_OVAL
http://www.securityfocus.com/archive/1/489968/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://exchange.xforce.ibmcloud.com/vulnerabilities/41249vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/498863/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2008-1372

Same Patch Batch · n/a · 2008-03-18 · 39 CVEs total

CVE-2008-0997		Apple Mac OS AppKit处理PPD文件栈溢出漏洞
CVE-2008-1000		Apple Mac OS 服务器目录遍历漏洞
CVE-2008-0044		Apple Mac OS AFP客户端 afp:// URL栈溢出漏洞
CVE-2008-0045		Apple Mac OS AFP服务器 Kerberos主域名跨域认证漏洞
CVE-2008-0046		Apple Mac OS 德语版的应用防火墙为特定服务和应用设置访问漏洞
CVE-2008-0048		Apple Mac OS NSDocument API处理文件名栈溢出漏洞
CVE-2008-0049		Apple Mac OS NSApplication线程mach端口任意命令执行漏洞
CVE-2008-0050		Apple Safari HTTPS代理服务器可能在502 Bad Gateway安全欺骗漏洞
CVE-2008-0051		Apple Mac OS CoreFoundation处理整数溢出漏洞
CVE-2008-0057		Apple Mac OS 老式序列号格式的解析器多个整数溢出漏洞
CVE-2008-0999		Apple Mac OS 磁盘格式(UDF)文件系统意外关闭漏洞
CVE-2008-1383		Gentoo ssl-cert eclass信息泄露漏洞
CVE-2008-1330		Novell GroupWise Windows客户端API共享文件夹邮件信息泄露漏洞
CVE-2008-1369		Sun SPARC Enterprise T5120 and T5220 Servers 'sshd_config文件'不安全默认配置漏洞
CVE-2008-1370		wildmary Yap Blog 'index.php' PHP远程文件包含漏洞
CVE-2008-1371		Drake CMS 'install/index.php' 完全路径遍历漏洞
CVE-2008-0727		IBM Informix Dynamic Server多个远程溢出漏洞
CVE-2008-0949		IBM Informix Dynamic Server 畸形连接请求安全权限漏洞
CVE-2008-1368		Microsoft Internet Explorer 代码注入漏洞
CVE-2008-0988		Apple Mac OS Libsystem的strnstr strnstr API的字节错误漏洞

Showing top 20 of 39 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-1372

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-1372

I. Basic Information for CVE-2008-1372

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-1372

III. Intelligence Information for CVE-2008-1372

Same Patch Batch · n/a · 2008-03-18 · 39 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-1372

Leave a comment