Vulnerability Description
The AToZed IntraWeb component 8.0 and earlier for Borland Delphi and Kylix, and IntraWeb 9.0 before build (9.0.12), allows remote attackers to cause a denial of service (thread hang or CPU consumption) via a crafted HTTP request, related to the OnBeforeDispatch function in the TIWServerController object.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Atozed Software | Intraweb Component | <= 8.0 |
References
- http://blogs.atozed.com/Olaf/20070124.en.aspx
- http://blogs.atozed.com/Olaf/20070124A.en.aspx
- http://osvdb.org/32973
- http://secunia.com/advisories/23902
- http://www.securityfocus.com/archive/1/457758/100/0/threaded
- http://www.securityfocus.com/archive/1/457947/100/0/threaded
- http://www.securityfocus.com/archive/1/458121/100/0/threaded
- http://www.securityfocus.com/bid/22185
- http://www.vupen.com/english/advisories/2007/0355
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31685
- http://blogs.atozed.com/Olaf/20070124.en.aspx
- http://blogs.atozed.com/Olaf/20070124A.en.aspx
- http://osvdb.org/32973
- http://secunia.com/advisories/23902
- http://www.securityfocus.com/archive/1/457758/100/0/threaded
FAQ
What is CVE-2007-0533?
CVE-2007-0533 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The AToZed IntraWeb component 8.0 and earlier for Borland Delphi and Kylix, and IntraWeb 9.0 before build (9.0.12), allows remote attackers to cause a denial of service (thread hang or CPU consumption...
How severe is CVE-2007-0533?
CVE-2007-0533 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0533?
Check the references section above for vendor advisories and patch information. Affected products include: Atozed Software Intraweb Component.