Lucene search
HistoryAug 21, 2009 - 11:02 a.m.
CVE-2009-2732
cve-2009-2732
http password
ntop
denial of service
null pointer
daemon crash
6.5 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.063 Low
EPSS
Percentile
93.6%
The checkHTTPpassword function in http.c in ntop 3.3.10 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an Authorization HTTP header that lacks a : (colon) character in the base64-decoded string.
Related
openvas
openvas
exploitpack
exploitpack
seebug
seebug
ntop 3.3.10 HTTP Basic Authentication NULL Pointer Dereference Denial Of Service Vulnerability
2014-07-01 00:00:00
ntop่ฎค่ฏๅคด็ฉบๆ้ๅผ็จๆ็ปๆๅกๆผๆด
2009-08-21 00:00:00
packetstorm
packetstorm
ntop 3.3.10 Denial Of Service
2009-08-18 00:00:00
prion
prion
Null pointer dereference
2009-08-21 11:02:00
securityvulns
securityvulns
ntop <= 3.3.10 Basic Authentication Null Pointer Denial of Service
2009-08-18 00:00:00
cvelist
cvelist
CVE-2009-2732
2009-08-20 22:00:00
ubuntucve
ubuntucve
CVE-2009-2732
2009-08-21 00:00:00
exploitdb
exploitdb
6.5 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.063 Low
EPSS
Percentile
93.6%
Related for CVE-2009-2732