Denial of Service Vulnerability in BarracudaDrive Web Server
CVE-2007-6315

Currently unrated

Key Information:

Vendor: Real Time Logic
Status: Barracudadrive Web Server; Barracudadrive Web Server Home Server
Vendor: CVE Published:; 12 December 2007

🔔 Create Real Time Logic Vulnerability Alert

What is CVE-2007-6315?

A vulnerability in BarracudaDrive Web Server prior to version 3.8 allows remote authenticated users to trigger a denial of service by sending an HTTP request to the /eh/chat.ehintf/C endpoint without including a valid Connection ID. This misconfiguration leads to a NULL pointer dereference, potentially crashing the server and disrupting service for users.

References

http://www.securityfocus.com/archive/1/484833/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/28032

third-party-advisoryx_refsource_SECUNIA

http://aluigi.altervista.org/adv/barradrive-adv.txt

x_refsource_MISC

EPSS Score

7% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 12, 2007
Vulnerability Reserved
Dec 11, 2007

CVE-2007-6315 Data

JSON