Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.56918
Kategorie:Denial of Service
Titel:Fenice <=1.10 Multiple Vulnerabilities
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The installed Fenice server is vulnerable to a buffer
overflow vulnerability that allows an attacker to execute
arbitrary code on the system. A denial of service condition
also exists if a requests contains a large Content-Length
parameter.

Versions up to and including 1.10 are vulnerable.

Solution: Upgrade to 1.11 or later

Risk factor : High

CVSS Score:
7.5

Querverweis: BugTraq ID: 17678
Common Vulnerability Exposure (CVE) ID: CVE-2006-2022
http://www.securityfocus.com/bid/17678
Bugtraq: 20060423 Buffer-overflow and crash in Fenice OMS 1.10 (Google Search)
http://www.securityfocus.com/archive/1/431870/100/0/threaded
Bugtraq: 20060425 Fenice - Open Media Streaming Server remote BOF exploit (Google Search)
http://www.securityfocus.com/archive/1/432002/100/0/threaded
Bugtraq: 20060607 Re: Buffer-overflow and crash in Fenice OMS 1.10 (Google Search)
http://www.securityfocus.com/archive/1/436256/100/0/threaded
http://aluigi.altervista.org/adv/fenicex-adv.txt
http://secunia.com/advisories/19770
http://securityreason.com/securityalert/794
http://www.vupen.com/english/advisories/2006/1491
XForce ISS Database: fenice-parseurl-bo(26078)
https://exchange.xforce.ibmcloud.com/vulnerabilities/26078
Common Vulnerability Exposure (CVE) ID: CVE-2006-2023
http://www.osvdb.org/24882
XForce ISS Database: fenice-contentlength-dos(26080)
https://exchange.xforce.ibmcloud.com/vulnerabilities/26080
CopyrightThis script is Copyright (C) 2005 E-Soft Inc.

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.