CVE-2008-6560 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2008-6560?

CVE-2008-6560 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2008-6560?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Cman, Redhat Fedora, Redhat Linux.

Vulnerability Description

Buffer overflow in CMAN - The Cluster Manager before 2.03.09-1 on Fedora 9 and Red Hat Enterprise Linux (RHEL) 5 allows attackers to cause a denial of service (CPU consumption and memory corruption) via a cluster.conf file with many lines. NOTE: it is not clear whether this issue crosses privilege boundaries in realistic uses of the product.

CVSS Score

7.8

HIGH

AV:N/AC:L/Au:N/C:N/I:N/A:C

Confidentiality

NONE

Integrity

NONE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Redhat	Cman	<= 2.03.08-1
Redhat	Fedora	9
Redhat	Linux	5.0

Related Weaknesses (CWE)

CWE-119

References

FAQ

What is CVE-2008-6560?

CVE-2008-6560 is a vulnerability with a CVSS score of 7.8 (HIGH). Buffer overflow in CMAN - The Cluster Manager before 2.03.09-1 on Fedora 9 and Red Hat Enterprise Linux (RHEL) 5 allows attackers to cause a denial of service (CPU consumption and memory corruption) v...

How severe is CVE-2008-6560?

CVE-2008-6560 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-6560?

Check the references section above for vendor advisories and patch information. Affected products include: Redhat Cman, Redhat Fedora, Redhat Linux.