Lucene search

[email protected]NVD:CVE-2004-2534

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2534

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.7 Medium

AI Score

Confidence

High

0.091 Low

EPSS

Percentile

94.7%

JSON

Fastream NETFile Server 7.1.2 does not properly handle keep-alive connection timeouts and does not close the connection after a HEAD request, which allows remote attackers to perform a denial of service (connection consumption) by sending a large number HTTP HEAD requests.

Affected configurations

NVD

Node

fastreamnetfile_serverMatch6.5.1.980

fastreamnetfile_serverMatch6.5.1.981

fastreamnetfile_serverMatch6.7.2.1085

fastreamnetfile_serverMatch6.7.3

fastreamnetfile_serverMatch6.7.5

fastreamnetfile_serverMatch7.1

fastreamnetfile_serverMatch7.1.2

fastreamnetfile_serverMatch7.1.2professional

References

secunia.com/advisories/13268

securitytracker.com/id?1012267

users.pandora.be/bratax/advisories/b003.html

www.osvdb.org/12101

www.securityfocus.com/bid/11687

exchange.xforce.ibmcloud.com/vulnerabilities/18192

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.7 Medium

AI Score

Confidence

High

0.091 Low

EPSS

Percentile

94.7%

JSON

Related for NVD:CVE-2004-2534

cve1 nessus1 cvelist1