Lucene search

[email protected]CVE-2006-6855

HistoryDec 31, 2006 - 5:00 a.m.

CVE-2006-6855

2006-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

aidex

mini-webserver

denial of service

http get requests

daemon crash

security vulnerability

7.5 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.122 Low

EPSS

Percentile

95.3%

JSON

AIDeX Mini-WebServer 1.1 early release 3 allows remote attackers to cause a denial of service (daemon crash) via a flood of HTTP GET requests, possibly related to display of HTTP log data by the GUI. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
aidex:mini-webserveraidex mini-webservereq1.1_rc3

CPE	Name	Operator	Version
aidex:mini-webserver	aidex mini-webserver	eq	1.1_rc3

References

secunia.com/advisories/23569

securitytracker.com/id?1017455

www.addict3d.org/index.php?page=viewarticle&type=security&ID=8473

www.securityfocus.com/bid/21816

exchange.xforce.ibmcloud.com/vulnerabilities/31153

www.exploit-db.com/exploits/3034

7.5 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.122 Low

EPSS

Percentile

95.3%

JSON