Denial of Service in GeoHttpServer by Long pwd Parameter
CVE-2004-2101

Currently unrated

Key Information:

Vendor: Geovision
Status: Geohttpserver
Vendor: CVE Published:; 31 December 2004

What is CVE-2004-2101?

The sysinfo script within GeoHttpServer contains a vulnerability that allows remote attackers to exploit a long 'pwd' parameter. This can lead to a denial of service condition by crashing the service, potentially due to a buffer overflow. Administrators are advised to ensure their systems are up-to-date and monitor for unusual input patterns that could exploit this vulnerability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/14913

vdb-entryx_refsource_XF

http://securitytracker.com/id?1008807

vdb-entryx_refsource_SECTRACK

http://marc.info/?l=bugtraq&m=107480261825214&w=2

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
May 27, 2005
Vulnerability published
Dec 31, 2004

Geovision

What is CVE-2004-2101?

References

Timeline