Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1184

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-1184
Last Modified 05 Sep 2008 04:25:53
Published 08 Dec 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1184

Summary

wrshdsp.exe in Denicomp Winsock RSHD/NT 2.21.00 and earlier allows remote attackers to cause a denial of service (CPU consumption) via (1) in 2.20.00 and earlier, an invalid port number such as a negative number, which causes a connection attempt to that port and all ports below 1024, and (2) in 2.21.00, a port number of 1024.

Vulnerable Systems

Application

  • Denicomp Winsock Rshd Nt 2.20

  • Denicomp Winsock Rshd Nt 2.21


References

BID - 3659

BUGTRAQ - 20011208 Winsock RSHD/NT 2.20.00 CPU overusage when invalid data is send

XF - winsock-rshdnt-error-dos(7694)

CONFIRM - http://www.denicomp.com/rshdnt.htm

BUGTRAQ - 20011213 WRSHDNT 2.21.00 CPU overusage


Last Updated: 27 May 2016 10:36:34