Lucene search

[email protected]CVE-2005-4203

HistoryDec 13, 2005 - 11:03 a.m.

CVE-2005-4203

2005-12-1311:03:00

[email protected]

web.nvd.nist.gov

logisphere

0.9.9j

denial of service

msg command

cve-2005-4203

nvd

6.4 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.018 Low

EPSS

Percentile

88.2%

JSON

LogiSphere 0.9.9j does not restrict the number of messages that can be sent, which allows remote attackers to cause a denial of service by sending a large number of messages via the msg command. NOTE: due to lack of appropriate details by the original researcher, it is unclear whether this description accurately reflects the discloser’s claim and is distinct from the XSS issue.

Affected configurations

NVD

Node

logispherelogisphereMatch0.9.9j

CPENameOperatorVersion
logisphere:logispherelogisphereeq0.9.9j

CPE	Name	Operator	Version
logisphere:logisphere	logisphere	eq	0.9.9j

References

secunia.com/advisories/17989

www.ipomonis.com/advisories/logisphere_server.zip

www.securityfocus.com/bid/15807

www.vupen.com/english/advisories/2005/2840

exchange.xforce.ibmcloud.com/vulnerabilities/23553

6.4 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.018 Low

EPSS

Percentile

88.2%

JSON

Related for CVE-2005-4203

cvelist1 nvd1