CVE-2004-2164

Name of the Vulnerable Software and Affected Versions VP-ASP version 5.0

Description The issue concerns a denial of service caused by connection consumption. This occurs because the shoprestoreorder.asp page in VP-ASP does not properly close the database connection when a user restores a previous order, allowing remote attackers to exploit this behavior.

Recommendations For VP-ASP version 5.0, ensure that the database connection is properly closed after a user restores a previous order to prevent connection consumption. Consider modifying the shoprestoreorder.asp page to include proper connection closure.