Lucene search

[email protected]CVE-2006-0342

HistoryJan 21, 2006 - 12:03 a.m.

CVE-2006-0342

2006-01-2100:03:00

CWE-399

[email protected]

web.nvd.nist.gov

rockliffe

mailsite

http

mail management agent

httpma

denial of service

cpu consumption

crash

special characters

cve-2006-0342

nvd

7.5 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.03 Low

EPSS

Percentile

90.8%

JSON

RockLiffe MailSite HTTP Mail management agent (httpma) 7.0.3.1 allows remote attackers to cause a denial of service (CPU consumption and crash) via a malformed query string containing special characters such as “|”.

CPENameOperatorVersion
rockliffe:mailsiterockliffe mailsiteeq7.0.3.1

CPE	Name	Operator	Version
rockliffe:mailsite	rockliffe mailsite	eq	7.0.3.1

References

marc.info/?l=full-disclosure&m=113777628702043&w=2

secunia.com/advisories/18551

www.osvdb.org/22678

www.securityfocus.com/bid/16331

www.vupen.com/english/advisories/2006/0284

exchange.xforce.ibmcloud.com/vulnerabilities/24255

7.5 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.03 Low

EPSS

Percentile

90.8%

JSON

Related for CVE-2006-0342

prion1