VDB
CVE-2008-2326
CVE-2008-2326
PUBLISHED
CVSS 5 MEDIUM
mDNSResponder in the Bonjour Namespace Provider in Apple Bonjour for Windows before 1.0.5 allows attackers to cause a denial of service (NULL pointer dereference and application crash) by resolving a crafted .local domain name that contains a long label.
EPSS 6.66% · 91.4th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
6.66%
91.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| apple | bonjour | 1.0.4 |
Exploit Intelligence
- CIRCL confirmed: CVE-2008-2326 (circl-sighting)
- 31822 (circl)
- 1020845 (circl)
- http://support.apple.com/kb/HT2990 (circl)
- APPLE-SA-2009-09-09 (circl)
- 31091 (circl)
- ADV-2008-2524 (circl)
- apple-bonjour-mdnsresponder-dos(45005) (circl)
Timeline
- Sep 9, 2008 PoC Published
- Sep 10, 2008 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 31822 third-party-advisory
- 1020845 vdb
- http://support.apple.com/kb/HT2990 url
- APPLE-SA-2009-09-09 vendor-advisory
- 31091 vdb
- ADV-2008-2524 vdb
- apple-bonjour-mdnsresponder-dos(45005) vdb
- https://nvd.nist.gov/vuln/detail/CVE-2008-2326 advisory