Описание
The server in Toribash 2.71 and earlier does not properly handle partially joined clients that are temporarily assigned the ID of -1, which allows remote attackers to cause a denial of service (daemon crash) via a GRIP command with the ID of -1.
The server in Toribash 2.71 and earlier does not properly handle partially joined clients that are temporarily assigned the ID of -1, which allows remote attackers to cause a denial of service (daemon crash) via a GRIP command with the ID of -1.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-4448
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36098
- http://aluigi.org/poc/toribashish.zip
- http://secunia.com/advisories/26507
- http://securityreason.com/securityalert/3033
- http://www.securityfocus.com/archive/1/477025/100/0/threaded
- http://www.securityfocus.com/bid/25359
EPSS
Процентиль: 79%
0.01273
Низкий
CVE ID
Связанные уязвимости
nvd
больше 18 лет назад
The server in Toribash 2.71 and earlier does not properly handle partially joined clients that are temporarily assigned the ID of -1, which allows remote attackers to cause a denial of service (daemon crash) via a GRIP command with the ID of -1.
EPSS
Процентиль: 79%
0.01273
Низкий