CVE-2002-1780

Name of the Vulnerable Software and Affected Versions BPM Studio Pro version 4.2

Description The software includes a web server that can be crashed by a remote attacker sending a URL request for a MS-DOS device, such as con. However, it is disputed that this issue may stem from a bug in Windows rather than the application itself.

Recommendations For version 4.2, as a temporary workaround, consider restricting access to the web server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.