Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2008-0830

CWE-20Improper Input Validation4 documents4 sources
Severity
7.5HIGH
EPSS
5.4%
top 9.87%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Apple Iphoto
Timeline
PublishedFeb 19
Latest updateMay 1

Description

The Digital Photo Access Protocol (DPAP) server for iPhoto 4.0.3 allows remote attackers to cause a denial of service (crash) via a malformed dpap: URI, a different vulnerability than CVE-2008-0043.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDapple/iphoto4.0.3

🔴Vulnerability Details

2
GHSA
GHSA-584p-q8fq-m966: The Digital Photo Access Protocol (DPAP) server for iPhoto 42022-05-01
CVEList
CVE-2008-0830: The Digital Photo Access Protocol (DPAP) server for iPhoto 42008-02-19

💥Exploits & PoCs

1
Exploit-DB
Apple iOS 4.0.3 - DPAP Server Denial of Service2008-02-18
CVE-2008-0830 (HIGH CVSS 7.5) | The Digital Photo Access Protocol ( | cvebase.io