Vulnerability Description
BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to cause a denial of service (hang) via a request for a .cfm file whose name contains an MS-DOS device name such as (1) con, (2) aux, (3) com1, and (4) com2.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| New Atlanta Communications | Bluedragon Server | 6.2.1.286 |
| New Atlanta Communications | Bluedragon Server Jx | 6.2.1.286 |
References
- http://secunia.com/advisories/19180ExploitPatchVendor Advisory
- http://secunia.com/secunia_research/2006-18/advisoryExploitVendor Advisory
- http://www.securityfocus.com/bid/18624ExploitPatch
- http://www.vupen.com/english/advisories/2006/2502
- http://secunia.com/advisories/19180ExploitPatchVendor Advisory
- http://secunia.com/secunia_research/2006-18/advisoryExploitVendor Advisory
- http://www.securityfocus.com/bid/18624ExploitPatch
- http://www.vupen.com/english/advisories/2006/2502
FAQ
What is CVE-2006-2310?
CVE-2006-2310 is a vulnerability with a CVSS score of 5.0 (MEDIUM). BlueDragon Server and Server JX 6.2.1.286 for Windows allows remote attackers to cause a denial of service (hang) via a request for a .cfm file whose name contains an MS-DOS device name such as (1) co...
How severe is CVE-2006-2310?
CVE-2006-2310 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-2310?
Check the references section above for vendor advisories and patch information. Affected products include: New Atlanta Communications Bluedragon Server, New Atlanta Communications Bluedragon Server Jx.