eFileGo upload.exe CPU Consumption DoS

2005-12-31T14:48:23
ID OSVDB:22152
Type osvdb
Reporter Dr_insane(dr_insane@pathfinder.gr)
Modified 2005-12-31T14:48:23

Description

Vulnerability Description

eFileGo contains a flaw that may allow a remote denial of service. The issue is triggered when an attempt is made to upload a file to an invalid directory. This will result in the 'upload'exe' program consuming large amounts of CPU resources on the system, potentially leading to loss of availability for the platform.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

eFileGo contains a flaw that may allow a remote denial of service. The issue is triggered when an attempt is made to upload a file to an invalid directory. This will result in the 'upload'exe' program consuming large amounts of CPU resources on the system, potentially leading to loss of availability for the platform.

References:

Vendor URL: http://www.paqtool.com/ Security Tracker: 1015430 Secunia Advisory ID:18279 Related OSVDB ID: 22151 Other Advisory URL: http://www.ipomonis.com/advisories/PaQFile_Share.txt CVE-2005-4623 Bugtraq ID: 16124