Vulnerability Details : CVE-2008-2749
Unspecified vulnerability in cshttpd in Sun Java System Calendar Server 6 and 6.3, and Sun ONE Calendar Server 6.0, when access logging (aka service.http.commandlog.all) is enabled, allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2008-2749
Probability of exploitation activity in the next 30 days: 2.02%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 88 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2008-2749
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.1
|
HIGH | AV:N/AC:M/Au:N/C:N/I:N/A:C |
8.6
|
6.9
|
NIST |
References for CVE-2008-2749
Products affected by CVE-2008-2749
- cpe:2.3:a:sun:java_system_calendar_server:6.3:*:*:*:*:*:*:*
- cpe:2.3:a:sun:java_system_calendar_server:6:2004q2:*:*:*:*:*:*
- cpe:2.3:a:sun:java_system_calendar_server:6:2005q1:*:*:*:*:*:*
- cpe:2.3:a:sun:java_system_calendar_server:6:2005q4:*:*:*:*:*:*
- cpe:2.3:a:sun:one_calendar_server:6.0:*:*:*:*:*:*:*