CPANSA-Devel-StackTrace-2008-3502: Devel-StackTrace vulnerability

Publisher	giterlizzi	Document category	csaf_security_advisory
Initial release date	2008-08-06T00:00:00	Engine	CSAF Perl Toolkit 0.25
Current release date	2008-08-06T00:00:00	Build Date
Current version	1	Status	final
CVSS v3.1 Base Score		Severity
Original language		Language	en
Also referred to

Vulnerability Description

Unspecified vulnerability in Best Practical Solutions RT 3.0.0 through 3.6.6 allows remote authenticated users to cause a denial of service (CPU or memory consumption) via unspecified vectors related to the Devel::StackTrace module for Perl.

Vulnerabilities

CVE-2008-3502

Vulnerability Description

Product status

Known affected

Product

Score

Devel-StackTrace less than 1.19

CVSS Version	CVSS Vector	CVSS Base Score	CVSS Base Severity
2.0	AV:N/AC:L/Au:S/C:N/I:N/A:P	4.0	Medium

Fixed

Devel-StackTrace greater than or equal 1.19

giterlizzi

Namespace: https://github.com/giterlizzi/

gdt@cpan.org

References

CPANSA-Devel-StackTrace-2008-3502 JSON self
https://raw.githubusercontent.com/giterlizzi/perl-CPANSA-CSAF/develop/csaf/white/2008/cpansa-devel-stacktrace-2008-3502.json
http://lists.bestpractical.com/pipermail/rt-announce/2008-June/000158.html external
http://lists.bestpractical.com/pipermail/rt-announce/2008-June/000158.html
http://www.securityfocus.com/bid/29925 external
http://www.securityfocus.com/bid/29925
http://secunia.com/advisories/30830 external
http://secunia.com/advisories/30830
https://exchange.xforce.ibmcloud.com/vulnerabilities/43337 external
https://exchange.xforce.ibmcloud.com/vulnerabilities/43337
CVE-2008-3502 (NVD) external
https://nvd.nist.gov/vuln/detail/CVE-2008-3502

Revision history

Version	Date of the revision	Summary of the revision
1	Wed Aug 6 00:00:00 2008	First release

Sharing rules

TLP:WHITE
For the TLP version see: https://www.first.org/tlp/