5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.497 Medium
EPSS
Percentile
97.5%
Firefly Media Server 1.0.0.1359 allows remote attackers to cause a denial
of service (NULL pointer dereference) via a (1) crafted Connection HTTP
header; a return carriage control character in the (2) Accept Language
header, (3) User-agent header, (4) Host header, or (5) protocol version; or
a (6) crafted HTTP protocol version.
Author | Note |
---|---|
ebarretto | Not for us: Firefly Media Server |
archives.neohapsis.com/archives/bugtraq/2012-12/0115.html
www.exploit-db.com/exploits/23574
www.securitytracker.com/id?1027917
launchpad.net/bugs/cve/CVE-2012-5875
nvd.nist.gov/vuln/detail/CVE-2012-5875
security-tracker.debian.org/tracker/CVE-2012-5875
www.cve.org/CVERecord?id=CVE-2012-5875
www.htbridge.com/advisory/HTB23129