Описание
client.cpp in BNBT EasyTracker 7.7r3.2004.10.27 and earlier allows remote attackers to cause a denial of service (application hang) via an HTTP header containing only a ":" (colon), possibly leading to an integer signedness error due to a missing field name or value.
Ссылки
- ExploitVendor Advisory
- Exploit
- ExploitVendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:trevor_hogan:bnbt:7.5_beta_release2:*:*:*:*:*:*:*
cpe:2.3:a:trevor_hogan:bnbt:7.5_beta_release3:*:*:*:*:*:*:*
cpe:2.3:a:trevor_hogan:bnbt:7.7_2004-10-27_r3:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.0113
Низкий
5 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
client.cpp in BNBT EasyTracker 7.7r3.2004.10.27 and earlier allows remote attackers to cause a denial of service (application hang) via an HTTP header containing only a ":" (colon), possibly leading to an integer signedness error due to a missing field name or value.
EPSS
Процентиль: 78%
0.0113
Низкий
5 Medium
CVSS2
Дефекты
CWE-20