CVE

Id
28393  
CVE No.
CVE-2007-5036  
Status
Candidate  
Description
Multiple buffer overflows in the AirDefense Airsensor M520 with firmware 4.3.1.1 and 4.4.1.4 allow remote authenticated users to cause a denial of service (HTTPS service outage) via a crafted query string in an HTTPS request to (1) adLog.cgi, (2) post.cgi, or (3) ad.cgi, related to the "files filter."  
Phase
Assigned (20070923)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
295059 28393 CVE-2007-5036 MILW0RM:4426  View
295060 28393 CVE-2007-5036 URL:http://www.milw0rm.com/exploits/4426  View
295061 28393 CVE-2007-5036 MISC:http://www.sybsecurity.com/advisors/SYBSEC-ADV01-Airsensor_M520_HTTPD_Remote_Preauth_Denial_Of_Service_and_Buffer_Overflow_PoC  View
295062 28393 CVE-2007-5036 BID:25715  View
295063 28393 CVE-2007-5036 URL:http://www.securityfocus.com/bid/25715  View
295064 28393 CVE-2007-5036 VUPEN:ADV-2007-3226  View
295065 28393 CVE-2007-5036 URL:http://www.vupen.com/english/advisories/2007/3226  View
295066 28393 CVE-2007-5036 SECUNIA:26869  View
295067 28393 CVE-2007-5036 URL:http://secunia.com/advisories/26869  View
295068 28393 CVE-2007-5036 XF:airdefense-https-dos(36691)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
55733 JVNDB-2007-004425 Bugzilla の WebService の User.pm におけるアカウント作成の制限を回避される脆弱性 Bugzilla の WebService の User.pm の offer_account_by_email 関数は、createemailregexp パラメータの値をチェックしないため、アカウント作成の制限を回避される脆弱性が存在します。 CVE-2007-5038 28393 7.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004425.html  View