exploitDog

CVE-2009-4873

Опубликовано: 26 мая 2010

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

Stack-based buffer overflow in the HTTP server in Rhino Software Serv-U Web Client 9.0.0.5 allows remote attackers to cause a denial of service (server crash) or execute arbitrary code via a long Session cookie.

Ссылки

http://secunia.com/advisories/37228
Vendor Advisory
http://www.rangos.de/ServU-ADV.txt
Exploit
http://www.securityfocus.com/bid/36895
Exploit
http://www.vupen.com/english/advisories/2009/3116
Vendor Advisory
http://secunia.com/advisories/37228
Vendor Advisory
http://www.rangos.de/ServU-ADV.txt
Exploit
http://www.securityfocus.com/bid/36895
Exploit
http://www.vupen.com/english/advisories/2009/3116
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rhinosoft:serv-u:9.0.0.5:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.60236

Средний

10 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-9pqr-jpg7-8j32

github

почти 4 года назад

Stack-based buffer overflow in the HTTP server in Rhino Software Serv-U Web Client 9.0.0.5 allows remote attackers to cause a denial of service (server crash) or execute arbitrary code via a long Session cookie.

EPSS

Процентиль: 98%

0.60236

Средний

10 Critical

CVSS2

Дефекты

CWE-119