CVE-2008-2374

CRITICAL Year: 2008
CVSS v3 Score
9.8
Critical
CVSS v2 Score
7.5
High
Weakness Type
CWE-1284
View all →

Vulnerability Description

src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3.34 versions, does not validate string length fields in SDP packets, which allows remote SDP servers to cause a denial of service or possibly have unspecified other impact via a crafted length field that triggers excessive memory allocation or a buffer over-read.

Related Vulnerabilities

CVE-2021-31556

CRITICAL
CVSS:9.8(Critical)

An issue was discovered in the Oauth extension for MediaWiki through 1.35.2. MWOAuthConsumerSubmitControl.php does not ensure that the length of an RSA key will fit in a MySQL blob.

CWE-12842021

CVE-2021-43267

CRITICAL
CVSS:9.8(Critical)

An issue was discovered in net/tipc/crypto.c in the Linux kernel before 5.14.16. The Transparent Inter-Process Communication (TIPC) functionality allows remote attackers to exploit insufficient valida...

CWE-12842021

CVE-2022-20385

CRITICAL
CVSS:9.8(Critical)

a function called 'nla_parse', do not check the len of para, it will check nla_type (which can be controlled by userspace) with 'maxtype' (in this case, it is GSCAN_MAX), then it access polciy array '...

CWE-12842022

CVE-2022-25727

CRITICAL
CVSS:9.8(Critical)

Memory Corruption in modem due to improper length check while copying into memory in Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music

CWE-12842022

CVE-2022-37134

CRITICAL
CVSS:9.8(Critical)

D-link DIR-816 A2_v1.10CNB04.img is vulnerable to Buffer Overflow via /goform/form2Wan.cgi. When wantype is 3, l2tp_usrname will be decrypted by base64, and the result will be stored in v94, which doe...

CWE-12842022

CVE-2025-43964

CRITICAL
CVSS:9.8(Critical)

In LibRaw before 0.21.4, tag 0x412 processing in phase_one_correct in decoders/load_mfbacks.cpp does not enforce minimum w0 and w1 values.

CWE-12842025