CVE-2008-3834
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-3834
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The dbus_signature_validate function in the D-bus library (libdbus) before 1.2.4 allows remote attackers to cause a denial of service (application abort) via a message containing a malformed signature, which triggers a failed assertion error.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
D-Bus dbus_signature_validate()函数类型签名拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Red Hat D-BUS(也称DBus)是美国红帽(Red Hat)公司的一个免费的消息总线模块,它提供了简单应用程序互相通讯的途径,是freedesktop.org项目的一部分。 D-BUS的_dbus_validate_signature_with_reason()函数没有正确地验证类型代码,远程攻击者利用畸形的签名信息,将会造成拒绝服务攻击,则将会引发验证声明错误.
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-3834
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-3834
请登录查看更多情报信息。
- https://bugs.freedesktop.org/show_bug.cgi?id=17803x_refsource_CONFIRM
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-3834x_refsource_CONFIRM
- http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705x_refsource_CONFIRM
- https://www.redhat.com/archives/fedora-package-announce/2008-October/msg00298.htmlvendor-advisoryx_refsource_FEDORA
- http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.htmlvendor-advisoryx_refsource_SUSE
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10253vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2008-3834
Same Patch Batch · n/a · 2008-10-07 · 28 CVEs total
| CVE-2008-4470 | Numark CUE 5 '.m3u' 文件缓冲区溢出和拒绝服务漏洞 | |
| CVE-2008-3061 | v-webmail 'redirect.php' 漏洞开放重定向漏洞 | |
| CVE-2008-4477 | Mon 'alert.d/test.alert' 不安全临时文件创建漏洞 | |
| CVE-2008-3063 | v-webmail 'login.php' SQL注入漏洞 | |
| CVE-2008-3060 | v-webmail 'local.hooks.php'和无效ID信息泄露漏洞 | |
| CVE-2008-4476 | Sympa 'sympa.pl' 不安全临时文件创建漏洞 | |
| CVE-2008-4475 | gnu ibackup 后置符号链接漏洞 | |
| CVE-2008-4474 | FreeRADIUS Dialup Admin 'freeradius-dialupadmin' 不安全临时文件创建漏洞 | |
| CVE-2008-4472 | autodesk design_review LiveUpdate ActiveX UpdateEngine类存在权限许可和访问控制漏洞 | |
| CVE-2008-4471 | autodesk design review DWF Viewer ActiveX CExpressViewerControl类中存在路径遍历漏洞 | |
| CVE-2008-4421 | MetaGauge Web Server 目录遍历漏洞 | |
| CVE-2008-4393 | VeriSign Kontiki Delivery Management System 'action' 参数跨站脚本攻击漏洞 | |
| CVE-2008-4384 | iseemedia 'LPControl.dll' LPViewer ActiveX控件多个栈溢出漏洞 | |
| CVE-2008-3543 | hp oncplus 未明拒绝服务攻击漏洞 | |
| CVE-2008-4457 | MemHT Portal 'inc_statistics.php' SQL注入漏洞 | |
| CVE-2008-4469 | Vastal I-Tech Freelance Zone 'view_cresume.php' SQL注入漏洞 | |
| CVE-2008-4468 | Vastal I-Tech Share Zone 'view_news.php' SQL注入漏洞 | |
| CVE-2008-4467 | Vastal I-Tech Toner Cart 'show_series_ink.php'SQL注入漏洞 | |
| CVE-2008-4466 | Vastal I-Tech Cosmetics Zone 'view_products_cat.php' SQL注入漏洞 | |
| CVE-2008-4465 | Vastal I-Tech DVD Zone 'view_mags.php' SQL注入漏洞 |
Showing top 20 of 28 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2008-3834
No comments yet