Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4450


Vulnerability Score 5.0 5.0
CVE Id CVE-2007-4450
Last Modified 05 Sep 2008 05:28:16
Published 20 Aug 2007 08:17:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



The server in Toribash 2.71 and earlier does not properly handle long commands, which allows remote attackers to trigger a protocol violation in which data is sent to other clients without a required LF character, as demonstrated by a SAY command. NOTE: the security impact of this violation is not clear, although it probably makes exploitation of CVE-2007-4449 easier.

Vulnerable Systems


  • Toribash 2.71


BID - 25359

BUGTRAQ - 20070818 Multiple vulnerabilities in Toribash 2.71

SREASON - 3033

SECUNIA - 26507


Last Updated: 27 May 2016 10:45:52