CVE-2008-0892

Name: CVE-2008-0892
Creator: NVD / NIST
Published: 2008-04-16T18:05:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 14.02%

Last modified Jun 16, 2026

CVE-2008-0892 is a vulnerability of currently unknown severity. The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.. EPSS estimates a 14.02% chance of exploitation in the next 30 days.

Description

The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.

Metrics

EPSS Probability

14.02%

96.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-20

Affected Software

Vendor	Product	Versions	Update
Redhat	Directory Server	7.1	—
Redhat	Directory Server	8	El4
Redhat	Fedora Directory Server	All versions	—

References

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01433676Broken Link
http://secunia.com/advisories/29761Broken Link
http://secunia.com/advisories/29826Broken Link
http://secunia.com/advisories/30114Broken Link
http://www.redhat.com/support/errata/RHSA-2008-0199.htmlBroken Link
http://www.redhat.com/support/errata/RHSA-2008-0201.htmlBroken Link
http://www.securityfocus.com/bid/28802Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1019856Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2008/1449/referencesBroken Link
https://bugzilla.redhat.com/show_bug.cgi?id=437301Issue Tracking, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/41840Third Party Advisory, VDB Entry
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.htmlThird Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.htmlThird Party Advisory
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01433676Broken Link
http://secunia.com/advisories/29761Broken Link
http://secunia.com/advisories/29826Broken Link
http://secunia.com/advisories/30114Broken Link
http://www.redhat.com/support/errata/RHSA-2008-0199.htmlBroken Link
http://www.redhat.com/support/errata/RHSA-2008-0201.htmlBroken Link
http://www.securityfocus.com/bid/28802Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1019856Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2008/1449/referencesBroken Link
https://bugzilla.redhat.com/show_bug.cgi?id=437301Issue Tracking, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/41840Third Party Advisory, VDB Entry
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00380.htmlThird Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00386.htmlThird Party Advisory

Timeline

Published: Apr 16, 2008
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2008-0892?

The replication monitor CGI script (repl-monitor-cgi.pl) in Red Hat Administration Server, as used by Red Hat Directory Server 8.0 EL4 and EL5, allows remote attackers to execute arbitrary commands.

How severe is CVE-2008-0892?

Severity scoring for CVE-2008-0892 is pending analysis. The EPSS model estimates a 14.02% probability of exploitation in the next 30 days.

How do I fix CVE-2008-0892?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2008-0892?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST