CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-4448

The server in Toribash 2.71 and earlier does not properly handle partially joined clients that are temporarily assigned the ID of -1, which allows remote attackers to cause a denial of service (daemon crash) via a GRIP command with the ID of -1.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.8%

CVSS Severity

CVSS v2 Score 5.0

References

http://aluigi.org/poc/toribashish.zip
http://secunia.com/advisories/26507
http://securityreason.com/securityalert/3033
http://www.securityfocus.com/archive/1/477025/100/0/threaded
http://www.securityfocus.com/bid/25359
https://exchange.xforce.ibmcloud.com/vulnerabilities/36098
http://aluigi.org/poc/toribashish.zip
http://secunia.com/advisories/26507
http://securityreason.com/securityalert/3033
http://www.securityfocus.com/archive/1/477025/100/0/threaded
http://www.securityfocus.com/bid/25359
https://exchange.xforce.ibmcloud.com/vulnerabilities/36098

Products affected by CVE-2007-4448

Toribash » Toribash » Version: Any

cpe:2.3:a:toribash:toribash:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-4448

Products

Pricing

Contact Us