Vulnerabilities > CVE-2004-1501 - Denial-Of-Service vulnerability in 602Lan Suite

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

software602

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

The webmail service in 602 Lan Suite 2004.0.04.0909 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) by sending a POST request with a large Content-Length value, then disconnecting without sending that amount of data.

Vulnerable Configurations

Part	Description	Count
Application	Software602 Software602 602Lan Suite *	1

References

http://marc.info/?l=bugtraq&m=109976745017459&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/17977