Lucene search

[email protected]CVE-2004-2035

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2004-2035

2005-05-1004:00:00

[email protected]

web.nvd.nist.gov

minishare

vulnerability

1.3.2

denial of service

nvd

cve-2004-2035

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.068 Low

EPSS

Percentile

93.9%

JSON

MiniShare 1.3.2 allows remote attackers to cause a denial of service (crash) via a malformed HTTP GET or HEAD request without the proper number of trailing CRLF sequences.

Affected configurations

NVD

Node

minishareminimal_http_serverMatch1.3.2

CPENameOperatorVersion
minishare:minimal_http_serverminishare minimal http servereq1.3.2

CPE	Name	Operator	Version
minishare:minimal_http_server	minishare minimal http server	eq	1.3.2

References

lists.netsys.com/pipermail/full-disclosure/2004-May/021980.html

marc.info/?l=bugtraq&m=108563992129877&w=2

secunia.com/advisories/11715

sourceforge.net/project/shownotes.php?release_id=241158

www.autistici.org/fdonato/advisory/MiniShare1.3.2-adv.txt

www.osvdb.org/6432

www.securityfocus.com/bid/10417

exchange.xforce.ibmcloud.com/vulnerabilities/16260

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.068 Low

EPSS

Percentile

93.9%

JSON

Related for CVE-2004-2035

nvd1 cvelist1