CVE-2008-4380

Опубликовано: 01 окт. 2008

Источник: nvd

CVSS2: 7.8

EPSS Средний

Описание

The web interface in Samsung DVR SHR2040 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request, related to the filter for configuration properties and "/x" characters.

Ссылки

http://secunia.com/advisories/31752
Vendor Advisory
http://securityreason.com/securityalert/4329
http://www.securityfocus.com/bid/31047
Exploit
http://www.sybsecurity.com/advisors/SYBSEC-ADV16-Samsung_DVR_SHR_2040_HTTPD_Remote_Denial_Of_Service
https://exchange.xforce.ibmcloud.com/vulnerabilities/44995
https://www.exploit-db.com/exploits/6394
http://secunia.com/advisories/31752
Vendor Advisory
http://securityreason.com/securityalert/4329
http://www.securityfocus.com/bid/31047
Exploit
http://www.sybsecurity.com/advisors/SYBSEC-ADV16-Samsung_DVR_SHR_2040_HTTPD_Remote_Denial_Of_Service
https://exchange.xforce.ibmcloud.com/vulnerabilities/44995
https://www.exploit-db.com/exploits/6394

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:samsung:dvr_shr2040:b3.03e-k1.53-v2.19_0705281908:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.15064

Средний

7.8 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-73w2-627h-gg55

github

почти 4 года назад