PT-2007-1669 · Getahead · Getahead Direct Web Remoting

Publicado

2007-01-11

Atualizado

2022-05-01

CVE-2007-0185

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Getahead Direct Web Remoting (DWR) versions prior to 1.1.4

Description The issue allows attackers to cause a denial of service, resulting in memory exhaustion and servlet outage. This is achieved through unknown vectors related to a large number of calls in a batch.

Recommendations For versions prior to 1.1.4, update to version 1.1.4 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-0185

GHSA-HG5P-233H-C7FH

Produtos afetados

Getahead Direct Web Remoting

PT-2007-1669 · Getahead · Getahead Direct Web Remoting

CVE-2007-0185

Identificadores relacionados

Produtos afetados

Referências · 10