Vulnerabilities > CVE-2005-4203 - Directory Traversal vulnerability in Logisphere 0.9.9J

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

logisphere

NVD

Published: 2005-12-13

Updated: 2017-07-20

Summary

LogiSphere 0.9.9j does not restrict the number of messages that can be sent, which allows remote attackers to cause a denial of service by sending a large number of messages via the msg command. NOTE: due to lack of appropriate details by the original researcher, it is unclear whether this description accurately reflects the discloser's claim and is distinct from the XSS issue.

Vulnerable Configurations

Part	Description	Count
Application	Logisphere Logisphere Logisphere 0.9.9J	1

References

http://secunia.com/advisories/17989
http://www.ipomonis.com/advisories/logisphere_server.zip
http://www.securityfocus.com/bid/15807
http://www.vupen.com/english/advisories/2005/2840
https://exchange.xforce.ibmcloud.com/vulnerabilities/23553