Vulnerabilities > CVE-2008-5102 - Resource Management Errors vulnerability in Zope

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

zope

CWE-399

exploit available

NVD

Published: 2008-11-17

Updated: 2009-09-01

Summary

PythonScripts in Zope 2 2.11.2 and earlier, as used in Conga and other products, allows remote authenticated users to cause a denial of service (resource consumption or application halt) via certain (1) raise or (2) import statements.

Vulnerable Configurations

Part	Description	Count
Application	Zope Zope Zope 2.0.0B6 Zope Zope 2.7.3-Final Zope Zope 2.4.0 Zope Zope 2.2.0B2 Zope Zope 2.7.3-B2 Zope Zope 2.7.0-Final Zope Zope 2.2.1 Zope Zope 2.7.4-B2 Zope Zope 2.3.1 Zope Zope 2.8.8 Zope Zope 2.2.0B4 Zope Zope 1.10.3 Zope Zope 2.7.4-C1 Zope Zope 2.10.5 Zope Zope 2.4.4B1 Zope Zope 2.8.9.1 Zope Zope 2.2.0 Zope Zope 2.1.2 Zope Zope 2.0.0B5 Zope Zope 2.3.0B3 Zope Zope 2.7.0-B2 Zope Zope 1.10.4 Zope Zope 2.10.4-Final Zope Zope 2.6.4 Zope Zope 2.9.0-B2 Zope Zope 2.11.1 Zope Zope 2.3.2 Zope Zope 2.5.1B1 Zope Zope 2.5.0 Zope Zope 2.4.0B1 Zope Zope 2.4.1 Zope Zope 2.10.7 Zope Zope 2.1.6 Zope Zope 2.4.4 Zope Zope 2.0.1 Zope Zope 2.9.2 Zope Zope 2.7.2-C1 Zope Zope 2.8.0-B2 Zope Zope 2.1.0B1 Zope Zope 2.3.2B1 Zope Zope 2.4.0B3 Zope Zope 2.3.1B3 Zope Zope 2.1.5 Zope Zope 2.3.1B2 Zope Zope 2.1.0B2 Zope Zope 2.10.0-B1 Zope Zope 2.7.0-C2 Zope Zope 2.6.2.B3 Zope Zope 2.5.1 Zope Zope 2.6.0 Zope Zope 2.6.1 Zope Zope 2.7.0 Zope Zope 2.7.1 Zope Zope 2.7.2 Zope Zope 2.7.3 Zope Zope 2.7.4 Zope Zope 2.7.5 Zope Zope 2.7.6 Zope Zope 2.7.7 Zope Zope 2.7.8 Zope Zope 2.8.0 Zope Zope 2.8.1 Zope Zope 2.8.2 Zope Zope 2.8.3 Zope Zope 2.8.4 Zope Zope 2.8.5 Zope Zope 2.8.6 Zope Zope 2.8.7 Zope Zope 2.8.9 Zope Zope 2.8.10 Zope Zope 2.8.11 Zope Zope 2.8.12 Zope Zope 2.9.0 Zope Zope 2.9.1 Zope Zope 2.9.3 Zope Zope 2.9.4 Zope Zope 2.9.5 Zope Zope 2.9.6 Zope Zope 2.9.7 Zope Zope 2.9.8 Zope Zope 2.9.9 Zope Zope 2.9.10 Zope Zope 2.9.11 Zope Zope 2.9.12 Zope Zope 2.10.0 Zope Zope 2.10.1 Zope Zope 2.10.2 Zope Zope 2.10.3 Zope Zope 2.10.4 Zope Zope 2.10.6 Zope Zope 2.10.8 Zope Zope 2.10.9 Zope Zope 2.10.10 Zope Zope 2.10.11 Zope Zope 2.10.12 Zope Zope 2.10.13 Zope Zope 2.11.0 Zope Zope 2.11.2 Zope Zope 2.0.0 Zope Zope 2.7.5-B1 Zope Zope 2.3.0B2 Zope Zope 2.7.6-Final Zope Zope 2.4.1B1 Zope Zope 2.7.6-B1 Zope Zope 2.0.0A4 Zope Zope 2.2.1B1 Zope Zope 2.7.7-Final Zope Zope 2.8.0-A1 Zope Zope 2.7.1-Final Zope Zope 2.6.2 Zope Zope 2.2.4 Zope Zope 2.4.0A1 Zope Zope 2.6.2.B4 Zope Zope 2.8.1-Final Zope Zope 2.4.3 Zope Zope 2.10.0-C1 Zope Zope 2.7.4-Final Zope Zope 2.4.2 Zope Zope 2.8.0-Final Zope Zope 2.8.0-A2 Zope Zope 2.7.5-C1 Zope Zope 2.10.2-B1 Zope Zope 2.2.2 Zope Zope 2.10.3-Final Zope Zope 2.1.3 Zope Zope 2.7.7-B1 Zope Zope 2.3.3B1 Zope Zope 2.2.5B1 Zope Zope 2.5.1B2 Zope Zope 2.8.0-B1 Zope Zope 2.6.2.B1 Zope Zope 2.2.0B1 Zope Zope 2.8.1-B1 Zope Zope 2.2.4B1 Zope Zope 2.2.0B3 Zope Zope 2.6.0B1 Zope Zope 2.7.9 Zope Zope 2.3.2B2 Zope Zope 2.10.0-B2 Zope Zope 2.7.0-B1 Zope Zope 2.7.0-A1 Zope Zope 2.1.0 Zope Zope 2.2.5 Zope Zope 2.7.5-Final Zope Zope 2.3.0A2 Zope Zope 2.7.0-B4 Zope Zope 2.5.0B1 Zope Zope 2.6.2.B6 Zope Zope 2.4.0B2 Zope Zope 2.7.1-B2 Zope Zope 2.6.3 Zope Zope 2.4.3B1 Zope Zope 2.4.2B1 Zope Zope 2.7.4-B1 Zope Zope 2.6.1.B1 Zope Zope 2.7.0-B3 Zope Zope 2.1.4 Zope Zope 2.6.2.B2 Zope Zope 2.7.4-C2 Zope Zope 2.0.0B4 Zope Zope 2.7.3-B1 Zope Zope 2.1.1 Zope Zope 2.3.0 Zope Zope 2.6.2.B5 Zope Zope 2.5.0A2 Zope Zope 2.3.0B1 Zope Zope 2.9.0-B1 Zope Zope 2.3.3 Zope Zope 2.3.1B1 Zope Zope 2.10.0-Final Zope Zope 2.9.0-Final Zope Zope 2.7.1-B1 Zope Zope 2.10.2-Final Zope Zope 2.2.0A1 Zope Zope 2.6.0B2 Zope Zope 2.5.0A1 Zope Zope 2.6.0A1 Zope Zope 2.3.0A1 Zope Zope 2.7.0-C1 Zope Zope 2.7.2-Final Zope Zope 2.7.6-B2 Zope Zope 2.2.3	197

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Exploit-Db

description	Zope 2.11.2 PythonScript Multiple Remote Denial Of Service Vulnerabilities. CVE-2008-5102. Dos exploits for multiple platform
id	EDB-ID:32581
last seen	2016-02-03
modified	2008-11-12
published	2008-11-12
reporter	Marc-Andre Lemburg
source	https://www.exploit-db.com/download/32581/
title	Zope <= 2.11.2 PythonScript Multiple Remote Denial Of Service Vulnerabilities

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References