Strix
26.1K

CVE-2008-1996

UnknownEPSS 11.18%

Last modified

CVE-2008-1996 is a vulnerability of currently unknown severity. licq before 1.3.6 allows remote attackers to cause a denial of service (file-descriptor exhaustion and application crash) via a large number of connections.. EPSS estimates a 11.18% chance of exploitation in the next 30 days.

Description

licq before 1.3.6 allows remote attackers to cause a denial of service (file-descriptor exhaustion and application crash) via a large number of connections.

Metrics

EPSS Probability
11.18%

95.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
LicqLicq0.61
LicqLicq0.71
LicqLicq0.75
LicqLicq0.75.1
LicqLicq0.75.2
LicqLicq0.75.3
LicqLicq0.75.3a
LicqLicq0.75_991219
LicqLicq0.76
LicqLicq0.80
LicqLicq0.81
LicqLicq0.84a
LicqLicq0.84b
LicqLicq0.85
LicqLicq1.0
LicqLicq1.0.1
LicqLicq1.0.2
LicqLicq1.0.3
LicqLicq1.0.4
LicqLicq1.2
LicqLicq1.2.3
LicqLicq1.2.4
LicqLicq1.2.6
LicqLicq1.2.7
LicqLicq1.3.0
LicqLicq1.3.0_pre
LicqLicq1.3.2
LicqLicq1.3.2_rc
LicqLicq1.3.4
LicqLicq1.3.5

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2008-1996?
licq before 1.3.6 allows remote attackers to cause a denial of service (file-descriptor exhaustion and application crash) via a large number of connections.
How severe is CVE-2008-1996?
Severity scoring for CVE-2008-1996 is pending analysis. The EPSS model estimates a 11.18% probability of exploitation in the next 30 days.
How do I fix CVE-2008-1996?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2008-1996?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST