Vulnerabilities > CVE-2008-5280 - Resource Management Errors vulnerability in Zilab ZIM Server 2.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The Local ZIM Server in Zilab Chat and Instant Messaging (ZIM) Server 2.0 and 2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted requests without required parameters.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Zilab Chat and Instant Messaging (ZIM) 2.0/2.1 Server Multiple Vulnerabilities. CVE-2008-5280. Dos exploits for multiple platform |
| id | EDB-ID:31285 |
| last seen | 2016-02-03 |
| modified | 2008-02-21 |
| published | 2008-02-21 |
| reporter | Luigi Auriemma |
| source | https://www.exploit-db.com/download/31285/ |
| title | Zilab Chat and Instant Messaging ZIM 2.0/2.1 - Server Multiple Vulnerabilities |
References
- http://aluigi.altervista.org/adv/zilabzcsx-adv.txt
- http://aluigi.altervista.org/adv/zilabzcsx-adv.txt
- http://aluigi.org/poc/zilabzcsx.zip
- http://aluigi.org/poc/zilabzcsx.zip
- http://secunia.com/advisories/29062
- http://secunia.com/advisories/29062
- http://www.securityfocus.com/bid/27940
- http://www.securityfocus.com/bid/27940
- http://www.vupen.com/english/advisories/2008/0664
- http://www.vupen.com/english/advisories/2008/0664
- http://www.vupen.com/english/advisories/2008/0665
- http://www.vupen.com/english/advisories/2008/0665