Lucene search

PRIOn knowledge basePRION:CVE-2012-5875

HistoryJan 18, 2013 - 11:48 a.m.

Null pointer dereference

2013-01-1811:48:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.298 Low

EPSS

Percentile

96.8%

JSON

Firefly Media Server 1.0.0.1359 allows remote attackers to cause a denial of service (NULL pointer dereference) via a (1) crafted Connection HTTP header; a return carriage control character in the (2) Accept Language header, (3) User-agent header, (4) Host header, or (5) protocol version; or a (6) crafted HTTP protocol version.

CPENameOperatorVersion
firefly_media_servereq1.0.0.1359

CPE	Name	Operator	Version
	firefly_media_server	eq	1.0.0.1359

References

archives.neohapsis.com/archives/bugtraq/2012-12/0115.html

www.securitytracker.com/id?1027917

www.exploit-db.com/exploits/23574

www.htbridge.com/advisory/HTB23129

6.9 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.298 Low

EPSS

Percentile

96.8%

JSON

Related for PRION:CVE-2012-5875