Vulnerability Details CVE-2007-4449
The client in Toribash 2.71 and earlier allows remote attackers to cause a denial of service (application hang) via a command without an LF character, as demonstrated by a SAY command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://aluigi.org/poc/toribashish.zip
- http://secunia.com/advisories/26507
- http://securityreason.com/securityalert/3033
- http://www.securityfocus.com/archive/1/477025/100/0/threaded
- http://www.securityfocus.com/bid/25359
- http://aluigi.org/poc/toribashish.zip
- http://secunia.com/advisories/26507
- http://securityreason.com/securityalert/3033
- http://www.securityfocus.com/archive/1/477025/100/0/threaded
- http://www.securityfocus.com/bid/25359