Vulnerabilities > CVE-2005-2283 - Unspecified vulnerability in ESI products Webeoc

CVSS 2.1 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

local

low complexity

esi-products

NVD

Published: 2005-07-18

Updated: 2008-09-05

Summary

WebEOC before 6.0.2 does not properly restrict the size of an uploaded file, which allows remote authenticated users to cause a denial of service (system and database resource consumption) via a large file.

Vulnerable Configurations

Part	Description	Count
Application	Esi_Products ESI Products Webeoc *	1

References

http://www.kb.cert.org/vuls/id/956762
http://www.kb.cert.org/vuls/id/JGEI-6BWLER