CVE-2004-1680

Name of the Vulnerable Software and Affected Versions Pingtel Xpressa handset firmware 2.1.11.24

Description The issue allows remote authenticated users to cause a denial of service, potentially triggering a buffer overflow, by sending a long HTTP GET request. This can lead to a crash of the VxWorks OS.

Recommendations For firmware 2.1.11.24, consider restricting access to the application.cgi to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit the length of HTTP GET requests to prevent potential buffer overflows.