Vulnerability Description
LogiSphere 0.9.9j does not restrict the number of messages that can be sent, which allows remote attackers to cause a denial of service by sending a large number of messages via the msg command. NOTE: due to lack of appropriate details by the original researcher, it is unclear whether this description accurately reflects the discloser's claim and is distinct from the XSS issue.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Logisphere | Logisphere | 0.9.9j |
References
- http://secunia.com/advisories/17989ExploitVendor Advisory
- http://www.ipomonis.com/advisories/logisphere_server.zip
- http://www.securityfocus.com/bid/15807
- http://www.vupen.com/english/advisories/2005/2840
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23553
- http://secunia.com/advisories/17989ExploitVendor Advisory
- http://www.ipomonis.com/advisories/logisphere_server.zip
- http://www.securityfocus.com/bid/15807
- http://www.vupen.com/english/advisories/2005/2840
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23553
FAQ
What is CVE-2005-4203?
CVE-2005-4203 is a vulnerability with a CVSS score of 7.8 (HIGH). LogiSphere 0.9.9j does not restrict the number of messages that can be sent, which allows remote attackers to cause a denial of service by sending a large number of messages via the msg command. NOTE...
How severe is CVE-2005-4203?
CVE-2005-4203 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4203?
Check the references section above for vendor advisories and patch information. Affected products include: Logisphere Logisphere.