Lucene search

[email protected]NVD:CVE-2007-6349

HistoryDec 20, 2007 - 11:46 p.m.

CVE-2007-6349

2007-12-2023:46:00

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0.029

Percentile

91.0%

JSON

P4Webs.exe in Perforce P4Web 2006.2 and earlier, when running on Windows, allows remote attackers to cause a denial of service (CPU consumption) via an HTTP request with an empty body and a Content-Length greater than 0.

Affected configurations

Nvd

Node

perforcep4webMatch2006.1

perforcep4webMatch2006.2

VendorProductVersionCPE
perforcep4web2006.1cpe:2.3:a:perforce:p4web:2006.1:*:*:*:*:*:*:*
perforcep4web2006.2cpe:2.3:a:perforce:p4web:2006.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
perforce	p4web	2006.1	cpe:2.3:a:perforce:p4web:2006.1:::::::*
perforce	p4web	2006.2	cpe:2.3:a:perforce:p4web:2006.2:::::::*

References

secunia.com/advisories/28158

securityreason.com/securityalert/3476

www.osvdb.org/39297

www.securityfocus.com/archive/1/485321/100/0/threaded

www.securityfocus.com/bid/26806

www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-015.txt

exchange.xforce.ibmcloud.com/vulnerabilities/39142

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0.029

Percentile

91.0%

JSON

Related for NVD:CVE-2007-6349

prion1 securityvulns2 cvelist1 cve1