CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-1402

Integer signedness error in certain older versions of the NeL library, as used in Mtp-Target 1.2.2 and earlier, and possibly other products, allows remote attackers to cause a denial of service (memory consumption or server crash) via a negative value in a STLport call, which is not caught by a signed comparison.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.027

EPSS Ranking 84.0%

CVSS Severity

CVSS v2 Score 5.0

References

http://aluigi.altervista.org/adv/mtpbugs-adv.txt
http://www.security-focus.com/archive/1/397304
http://aluigi.altervista.org/adv/mtpbugs-adv.txt
http://www.security-focus.com/archive/1/397304

Products affected by CVE-2005-1402

Mtp-Target » Mtp-Target » Version: Any

cpe:2.3:a:mtp-target:mtp-target:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-1402

Products

Pricing

Contact Us