Lucene search

PRIOn knowledge basePRION:CVE-2007-5933

HistoryNov 13, 2007 - 8:46 p.m.

Session fixation

2007-11-1320:46:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.032 Low

EPSS

Percentile

90.9%

JSON

Pioneers (formerly gnocatan) before 0.11.3 allows remote attackers to cause a denial of service (crash) by triggering a delete operation while the Session object is still being used, as demonstrated by causing a “Broken pipe” error.

CPENameOperatorVersion
pioneersle0.11.2

CPE	Name	Operator	Version
	pioneers	le	0.11.2

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=449541

bugs.gentoo.org/show_bug.cgi?id=198807

secunia.com/advisories/27522

secunia.com/advisories/27646

security.gentoo.org/glsa/glsa-200711-20.xml

securitytracker.com/id?1019024

sourceforge.net/tracker/index.php?func=detail&aid=1791176&group_id=5095&atid=305095

www.securityfocus.com/bid/26391

6.6 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.032 Low

EPSS

Percentile

90.9%

JSON

Related for PRION:CVE-2007-5933