CVE-2008-6560

CWE-119 โ€” Buffer Overflow6 documents6 sources
Severity
7.8HIGH
EPSS
1.0%
top 23.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Redhat Cman
Timeline
PublishedMar 31
Latest updateMay 17

Description

Buffer overflow in CMAN - The Cluster Manager before 2.03.09-1 on Fedora 9 and Red Hat Enterprise Linux (RHEL) 5 allows attackers to cause a denial of service (CPU consumption and memory corruption) via a cluster.conf file with many lines. NOTE: it is not clear whether this issue crosses privilege boundaries in realistic uses of the product.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

โ–ถNVDredhat/cman2.03.08-1+4

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-cwc8-29q7-2594: Buffer overflow in CMAN - The Cluster Manager before 2โ†—2022-05-17
โ–ถ
CVEList
CVE-2008-6560: Buffer overflow in CMAN - The Cluster Manager before 2โ†—2009-03-31
โ–ถ

๐Ÿ’ฅExploits & PoCs

1
Exploit-DB
Microsoft Windows Wordpad - '.doc' File Local Denial of Service (PoC)โ†—2008-09-25
โ–ถ

๐Ÿ“‹Vendor Advisories

2
Ubuntu
Red Hat Cluster Suite vulnerabilitiesโ†—2009-12-18
โ–ถ
Red Hat
CVE-2008-6560: Buffer overflow in CMAN - The Cluster Manager before 2โ†—
โ–ถ
CVE-2008-6560 (HIGH CVSS 7.8) | Buffer overflow in CMAN - The Clust | cvebase.io