Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2806

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2806
Last Modified 05 Sep 2008 04:52:44
Published 06 Sep 2005 06:03:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2806

Summary

client.cpp in BNBT EasyTracker 7.7r3.2004.10.27 and earlier allows remote attackers cause a denial of service (application hang) via an HTTP header containing only a ":" (colon), possibly leading to an integer signedness error due to a missing field name or value.

Vulnerable Systems

Application

  • Trevor Hogan Bnbt 7.5 Beta Release2

  • Trevor Hogan Bnbt 7.5 Beta Release3

  • Trevor Hogan Bnbt 7.7 2004-10-27 R3


References

XF - bnbteasytracker-client-dos(22058)

BID - 14700

MISC - http://secway.org/advisory/AD20050830.txt

SECUNIA - 16613

BUGTRAQ - 20050830 BNBT EasyTracker Remote Denial of Service Vulnerability


Last Updated: 27 May 2016 10:40:38