Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1680


Vulnerability Score 5.0 5.0
CVE Id CVE-2004-1680
Last Modified 05 Sep 2008 04:42:03
Published 13 Sep 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



application.cgi in the Pingtel Xpressa handset running firmware allows remote authenticated users to cause a denial of service (VxWorks OS crash) via a long HTTP GET request, possibly triggering a buffer overflow.

Vulnerable Systems


XF - xpressa-applicationcgi-dos(17346)

BID - 11161

ATSTAKE - A091304-2

SECUNIA - 12523

Last Updated: 27 May 2016 10:39:08