1. CVE-Search
  2. CVE-2008-6393
ID CVE-2008-6393
Summary PSI Jabber client before 0.12.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a file transfer request with a negative value in a SOCKS5 option, which bypasses a signed integer check and triggers an integer overflow and a heap-based buffer overflow.
References
Vulnerable Configurations
  • cpe:2.3:a:psi-im:psi:0.1.0:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:0.1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:psi-im:psi:0.8.6:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:0.8.6:*:*:*:*:*:*:*
  • cpe:2.3:a:psi-im:psi:0.8.7:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:0.8.7:*:*:*:*:*:*:*
  • cpe:2.3:a:psi-im:psi:0.9:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:psi-im:psi:0.9.1:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:0.9.1:*:*:*:*:*:*:*
  • cpe:2.3:a:psi-im:psi:0.9.2:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:0.9.2:*:*:*:*:*:*:*
  • cpe:2.3:a:psi-im:psi:0.9.3:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:0.9.3:*:*:*:*:*:*:*
  • cpe:2.3:a:psi-im:psi:0.11:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:0.11:*:*:*:*:*:*:*
  • cpe:2.3:a:psi-im:psi:*:*:*:*:*:*:*:*
    cpe:2.3:a:psi-im:psi:*:*:*:*:*:*:*:*
  • cpe:2.3:a:jabber:jabber_client:*:*:*:*:*:*:*:*
    cpe:2.3:a:jabber:jabber_client:*:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 29-09-2017 - 01:33)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bugtraq 20081223 [ISecAuditors Security Advisories] PSI remote integer overflow DoS
confirm
debian DSA-1741
exploit-db 7555
fedora
  • FEDORA-2009-2285
  • FEDORA-2009-2295
misc http://jolmos.blogspot.com/2008/12/psi-remote-integer-overflow.html
mlist [oss-security] 20090225 CVE request: Psi <0.12.1 DoS
secunia
  • 33311
  • 34119
  • 34259
  • 34301
suse SUSE-SR:2009:006
Last major update 29-09-2017 - 01:33
Published 03-03-2009 - 16:30
Last modified 29-09-2017 - 01:33
Back to Top