CVE-2005-2806

Name of the Vulnerable Software and Affected Versions BNBT EasyTracker versions 7.7r3.2004.10.27 and earlier

Description The issue allows remote attackers to cause a denial of service, resulting in an application hang. This can be achieved by sending an HTTP header that contains only a colon (:), which may lead to an integer signedness error due to the absence of a field name or value.

Recommendations For BNBT EasyTracker versions 7.7r3.2004.10.27 and earlier, consider updating to a newer version that addresses this issue. As a temporary workaround, restrict access to the HTTP header processing functionality to minimize the risk of exploitation.