CVE-2008-5870
Public Exploits 1
ExploitDB · 1 EDB-6673 [dos]
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2008-5870
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
FastStone Image Viewer 3.6 allows user-assisted attackers to cause a denial of service (application crash) via a malformed BMP image with large width and height values, possibly a related issue to CVE-2007-1942.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
FastStone Image Viewer 多个BMP拒绝服务漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
FastStone Image Viewer、ACDSee Photo Manager都是非常流行的图片浏览器。 FastStone Image Viewer 3.6版本允许用户协助式攻击者借助一个畸形的BMO图像,引起拒绝服务攻击(应用程序崩溃)。该畸形的BMO图像有过大的宽度值和高度值。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2008-5870
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2008-5870
请登录查看更多情报信息。
Vendor Advisories for CVE-2008-5870 (1)
Exploits & Public PoCs for CVE-2008-5870 (2)
- 🔗 FastStone Image Viewer v3.6 (malformed bmp image) DoS Exploit - CXSecurity.com Read full article third-party-advisoryx_refsource_SREASON
Same Patch Batch · n/a · 2009-01-08 · 20 CVEs total
| CVE-2008-5880 | Gobbl CMS Cookie 脚本auth.php 身份认证绕过漏洞 | |
| CVE-2008-5873 | Yerba SACphp 多个远程安全漏洞 | |
| CVE-2008-5872 | nortel multimedia_communication_server_5100 输入验证漏洞 | |
| CVE-2008-5871 | nortel multimedia_communication_server_5100 信任管理漏洞 | |
| CVE-2008-5869 | proxim tsunami_mp.11_2411 跨站脚本攻击漏洞 | |
| CVE-2008-5868 | IntelliTamper "CFG" 文件 缓冲区溢出漏洞 | |
| CVE-2009-0072 | Microsoft Internet Explorer 元素BODY 远程拒绝服务漏洞 | |
| CVE-2009-0071 | Mozilla Firefox designMode空指针引用拒绝服务漏洞 | |
| CVE-2009-0070 | Apple Safari安全漏洞 | |
| CVE-2009-0043 | CA Service Metric Analysis和Service Level Managemen'smmsnmpd'任意命令执行漏洞 | |
| CVE-2008-0067 | HP OpenView网络节点管理器HTTP请求多个栈溢出漏洞 | |
| CVE-2008-5879 | Phpclanwebsite 脚本index.php 跨站脚本攻击漏洞 | |
| CVE-2008-5878 | Phpclanwebsite 多个目录遍历漏洞 | |
| CVE-2008-5877 | Phpclanwebsite 多个输入验证漏洞 | |
| CVE-2008-5876 | Irrlicht B3D加载器缓冲区溢出和代码执行漏洞 | |
| CVE-2008-5875 | Joomla ! HBS com_lowcosthotels组件SQL注入漏洞 | |
| CVE-2008-5874 | Joomla! HBS index.php脚本id参数SQL注入漏洞 | |
| CVE-2008-4827 | 多个厂商SizerOne ActiveX控件AddTab方式堆溢出漏洞 | |
| CVE-2008-3819 | Cisco全球站点选择器DNS服务器远程拒绝服务漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-10608
DedeCMS carbuyaction.php RemoveXSS sql injection - CVE-2026-10607
DedeCMS flink.php dede_htmlspecialchars sql injection - CVE-2026-10606
DedeCMS Feedback feedback.php TrimMsg sql injection - CVE-2026-10581
DedeCMS download.php base64_decode server-side request forge - CVE-2026-10565
Open5GS NGAP Handover gmm-sm.c gmm_state_security_mode race
V. Comments for CVE-2008-5870
No comments yet