CVE-2008-5564 - Vulnerability Details - OpenCVE

Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Orb Networks	Orb

Configuration 1 [-]

OR	cpe:2.3:a:orb_networks:orb::::::::
	cpe:2.3:a:orb_networks:orb:2.00.0930:::::::*
	cpe:2.3:a:orb_networks:orb:2.00.0989:::::::*
	cpe:2.3:a:orb_networks:orb:2.00.1014:::::::*
	cpe:2.3:a:orb_networks:orb:2.00.1084:::::::*
	cpe:2.3:a:orb_networks:orb:2.01.0008:::::::*
	cpe:2.3:a:orb_networks:orb:2.01.0013:::::::*
	cpe:2.3:a:orb_networks:orb:2.01.0015:::::::*
	cpe:2.3:a:orb_networks:orb:2.01.0017:::::::*

No data.

References

Link	Providers
http://secunia.com/advisories/33017
http://securityreason.com/securityalert/4729
http://www.securityfocus.com/archive/1/498904/100/0/threaded
http://www.securityfocus.com/bid/32628
https://exchange.xforce.ibmcloud.com/vulnerabilities/47083

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-12-15T17:45:00

Updated: 2024-08-07T10:56:47.151Z

Reserved: 2008-12-15T00:00:00

Link: CVE-2008-5564

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2008-12-15T18:00:00.390

Modified: 2025-04-09T00:30:58.490

Link: CVE-2008-5564

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-12-04T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "orb-http-dos(47083)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47083"}, {"name": "33017", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33017"}, {"name": "32628", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/32628"}, {"name": "20081204 DDIVRT-2008-18 Orb Denial of Service", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/498904/100/0/threaded"}, {"name": "4729", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/4729"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-5564", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "orb-http-dos(47083)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47083"}, {"name": "33017", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33017"}, {"name": "32628", "refsource": "BID", "url": "http://www.securityfocus.com/bid/32628"}, {"name": "20081204 DDIVRT-2008-18 Orb Denial of Service", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/498904/100/0/threaded"}, {"name": "4729", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/4729"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T10:56:47.151Z"}, "title": "CVE Program Container", "references": [{"name": "orb-http-dos(47083)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47083"}, {"name": "33017", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/33017"}, {"name": "32628", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/32628"}, {"name": "20081204 DDIVRT-2008-18 Orb Denial of Service", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/498904/100/0/threaded"}, {"name": "4729", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/4729"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-5564", "datePublished": "2008-12-15T17:45:00", "dateReserved": "2008-12-15T00:00:00", "dateUpdated": "2024-08-07T10:56:47.151Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:orb_networks:orb:*:*:*:*:*:*:*:*", "matchCriteriaId": "6E748351-6942-485B-B6C6-330401AEA645", "versionEndIncluding": "2.01.0022", "vulnerable": true}, {"criteria": "cpe:2.3:a:orb_networks:orb:2.00.0930:*:*:*:*:*:*:*", "matchCriteriaId": "D8654991-E3D4-4839-A912-71689C84A9A3", "vulnerable": true}, {"criteria": "cpe:2.3:a:orb_networks:orb:2.00.0989:*:*:*:*:*:*:*", "matchCriteriaId": "154F5BF6-3F5C-40F2-A02F-7A265423CAD6", "vulnerable": true}, {"criteria": "cpe:2.3:a:orb_networks:orb:2.00.1014:*:*:*:*:*:*:*", "matchCriteriaId": "EFFCCA29-35F9-46A5-9AB6-25817630D4A6", "vulnerable": true}, {"criteria": "cpe:2.3:a:orb_networks:orb:2.00.1084:*:*:*:*:*:*:*", "matchCriteriaId": "5E428767-B896-453B-A092-B6EA6443F885", "vulnerable": true}, {"criteria": "cpe:2.3:a:orb_networks:orb:2.01.0008:*:*:*:*:*:*:*", "matchCriteriaId": "2E8FCDF0-A5D6-4BDD-BBAB-767EB7CFE7BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:orb_networks:orb:2.01.0013:*:*:*:*:*:*:*", "matchCriteriaId": "77584A71-1EB5-4E9D-8C3A-B730B5356156", "vulnerable": true}, {"criteria": "cpe:2.3:a:orb_networks:orb:2.01.0015:*:*:*:*:*:*:*", "matchCriteriaId": "B7ACD0E2-A74B-4505-96CE-E1FE7D30ED8D", "vulnerable": true}, {"criteria": "cpe:2.3:a:orb_networks:orb:2.01.0017:*:*:*:*:*:*:*", "matchCriteriaId": "BB50434D-114D-4D97-9F80-604E4100D6BC", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the media server in Orb Networks Orb before 2.01.0025 allows remote attackers to cause a denial of service (daemon crash) via a malformed HTTP request."}, {"lang": "es", "value": "Vulnerabilidades no especificadas en el servidor en Orb Networks Orb anterior a v2.01.0025, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda de demonio) mediante una petici\u00f3n HTTP mal formada"}], "id": "CVE-2008-5564", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-12-15T18:00:00.390", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33017"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/4729"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/498904/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/32628"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47083"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33017"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/4729"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/498904/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/32628"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47083"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}