PT-1999-1749 · Tenfour · Tenfour Tfs Gateway

Published

1999-08-31

Updated

2017-12-19

CVE-1999-1515

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: TenFour TFS Gateway version 4.0

Description: A non-default configuration issue allows an attacker to cause a denial of service by sending messages with incorrect sender and recipient addresses. This causes the gateway to continuously attempt to return the message every 10 seconds.

Recommendations: For TenFour TFS Gateway version 4.0, consider reconfiguring the gateway to handle messages with incorrect sender and recipient addresses properly to prevent the denial of service. As a temporary workaround, restrict the ability to send messages with incorrect addresses to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1515

Affected Products

Tenfour Tfs Gateway

PT-1999-1749 · Tenfour · Tenfour Tfs Gateway

CVE-1999-1515

Related Identifiers

Affected Products

References · 4