CVE-2008-2240
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-2240
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Stack-based buffer overflow in the Web Server service in IBM Lotus Domino before 7.0.3 FP1, and 8.x before 8.0.1, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long Accept-Language HTTP header.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
IBM Lotus Domino Web Server 'Accept Language' 缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IBM Lotus Domino 7.0.3 FP1之前的版本以及8.0.1之前的8.x版本中的Web Server service存在栈缓冲区溢出漏洞。远程攻击者可以借助一个长的接受-语言HTTP请求头,引起拒绝服务攻击(后台程序崩溃)或者可能执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-2240
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-2240
Please Login to view more intelligence information
- http://www-1.ibm.com/support/docview.wss?uid=swg21303057x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2008-2240
Same Patch Batch · n/a · 2008-05-22 · 19 CVEs total
| CVE-2008-2400 | Stunnel Windows 未明本地特权提升漏洞 | |
| CVE-2008-2417 | How2ASP.net Webboard 'showQAnswer.asp' SQL注入漏洞 | |
| CVE-2008-2416 | FicHive 'sources/fiction.class.php' 参数SQL注入漏洞 | |
| CVE-2008-2415 | Digital Hive 'base_include.php' 目录遍历漏洞 | |
| CVE-2008-2414 | AN Guestbook 'send_email.php' 跨站脚本攻击漏洞 | |
| CVE-2008-2413 | ACGV News 'glossaire.php' 跨站脚本攻击漏洞 | |
| CVE-2008-2412 | ACGV News 'glossaire.php' SQL注入漏洞 | |
| CVE-2008-2411 | SazCart ‘index.php’SQL注入漏洞 | |
| CVE-2008-2410 | IBM Lotus Domino Web Server 跨站脚本攻击漏洞 | |
| CVE-2007-5962 | vsftpd 资源管理错误漏洞 | |
| CVE-2008-2399 | FireFTP MLSD及LIST命令目录遍历漏洞 | |
| CVE-2008-2053 | Cisco Unified Customer Voice Portal权限提升漏洞 | |
| CVE-2008-2006 | Apple iCal 'TRIGGER' Parameter 拒绝服务漏洞 | |
| CVE-2008-1804 | Snort Time To Live Fragment Reassembly 'spp_frag3.c' 安全绕过漏洞 | |
| CVE-2008-1159 | Cisco IOS SSH服务器多个拒绝服务漏洞 | |
| CVE-2008-0536 | Cisco服务控制引擎SSH服务器I/O拒绝服务漏洞 | |
| CVE-2008-0535 | Cisco服务控制引擎SSH服务器认证方法拒绝服务漏洞 | |
| CVE-2008-0534 | Cisco服务控制引擎SSH服务器尝试登陆的拒绝服务漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2008-2240
No comments yet