PT-2003-2503 · Fnord · Fnord
Ralf Wildenhues
·
Publicado
2003-12-31
·
Atualizado
2018-10-19
·
CVE-2003-1558
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
fnord version 1.6
Description
The issue allows remote attackers to create a denial of service (crash) and possibly execute arbitrary code via a long CGI request passed to the
do cgi function.Recommendations
For fnord version 1.6, consider restricting access to the
do cgi function until a patch is available. As a temporary workaround, avoid using long CGI requests to minimize the risk of exploitation.Correção
DoS
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Fnord