Vulnerability Database

296,147

Total vulnerabilities in the database

CVE-2008-5620

RoundCube Webmail (roundcubemail) before 0.2-beta allows remote attackers to cause a denial of service (memory consumption) via crafted size parameters that are used to create a large quota image.

  • Published: Dec 17, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-5620
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.8
  • AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

Software From Fixed in
roundcube / webmail 0.1-rc1 0.1-rc1.x
roundcube / webmail 0.1-20050820 0.1-20050820.x
roundcube / webmail 0.1-20051007 0.1-20051007.x
roundcube / webmail 0.1 0.1.x
roundcube / webmail 0.1-beta2 0.1-beta2.x
roundcube / webmail 0.1-beta 0.1-beta.x
roundcube / webmail 0.1-20050811 0.1-20050811.x
roundcube / webmail 0.1-rc2 0.1-rc2.x
roundcube / webmail 0.1-stable 0.1-stable.x
roundcube / webmail 0.1-20051021 0.1-20051021.x
roundcube / webmail 0.1.1 0.1.1.x
roundcube / webmail 0.1-alpha 0.1-alpha.x
roundcube / webmail 0.2 0.2.x
roundcube / webmail - 0.2.x