Vulnerabilities > CVE-2010-5279 - Numeric Errors vulnerability in Vwar Virtual WAR 1.6.1

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

vwar

CWE-189

NVD

Published: 2012-10-08

Updated: 2012-10-08

Summary

article.php in Virtual War (aka VWar) 1.6.1 R2 allows remote attackers to cause a denial of service (memory consumption) via a large integer in the ratearticleselect parameter.

Vulnerable Configurations

Part	Description	Count
Application	Vwar Vwar Virtual WAR 1.6.1	1

Common Weakness Enumeration (CWE)

CWE-189 - Numeric Errors

References

http://dmcdonald.net/vwar.txt
http://seclists.org/fulldisclosure/2010/Aug/235