Lucene search

[email protected]CVE-2005-2283

HistoryJul 18, 2005 - 4:00 a.m.

CVE-2005-2283

2005-07-1804:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

webeoc

cve-2005-2283

denial of service

file upload

security vulnerability

nvd

6.5 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

27.9%

JSON

WebEOC before 6.0.2 does not properly restrict the size of an uploaded file, which allows remote authenticated users to cause a denial of service (system and database resource consumption) via a large file.

CPENameOperatorVersion
esi_products:webeocesi products webeocle6.0.1

CPE	Name	Operator	Version
esi_products:webeoc	esi products webeoc	le	6.0.1

References

www.kb.cert.org/vuls/id/956762

www.kb.cert.org/vuls/id/JGEI-6BWLER

6.5 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

27.9%

JSON

Related for CVE-2005-2283

cert1