Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2222

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-2222
Last Modified 05 Sep 2008 05:03:58
Published 05 May 2006 03:02:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2222

Summary

Buffer overflow in zawhttpd 0.8.23, and possibly previous versions, allows remote attackers to cause a denial of service (daemon crash) via a request for a URI composed of several "\" (backslash) characters.

Vulnerable Systems

Application

  • Norz Zawhttpd 0.8.23


References

BID - 17814

BUGTRAQ - 20060502 zawhttpd - Buffer Overflow

XF - zawhttpd-get-dos(26257)

MISC - http://www.securiteam.com/exploits/5OP0315IKK.html

OSVDB - 25671

SECTRACK - 1016030

SREASON - 852


Last Updated: 27 May 2016 10:42:23