Lucene search

RedhatCVE-2007-4136

HistoryNov 14, 2007 - 12:46 a.m.

CVE-2007-4136

2007-11-1400:46:00

redhat

web.nvd.nist.gov

red hat

conga

0.10.0

ricci daemon

denial of service

vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.033

Percentile

91.5%

JSON

The ricci daemon in Red Hat Conga 0.10.0 allows remote attackers to cause a denial of service (loss of new connections) by repeatedly sending data or attempting connections.

Affected configurations

Nvd

Node

redhatcongaMatch0.10.0

VendorProductVersionCPE
redhatconga0.10.0cpe:2.3:a:redhat:conga:0.10.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
redhat	conga	0.10.0	cpe:2.3:a:redhat:conga:0.10.0:::::::*

References

rhn.redhat.com/errata/RHSA-2007-0640.html

secunia.com/advisories/27611

securitytracker.com/id?1018921

www.securityfocus.com/bid/26393

bugzilla.redhat.com/show_bug.cgi?id=336101

exchange.xforce.ibmcloud.com/vulnerabilities/38358

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9871

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

Low

EPSS

0.033

Percentile

91.5%

JSON

Related for CVE-2007-4136