Vulnerabilities > CVE-2012-2438 - Resource Management Errors vulnerability in Awcm-Cms AR web Content Manager 2.2

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

awcm-cms

CWE-399

NVD

Published: 2012-11-26

Updated: 2017-08-29

Summary

ar web content manager (AWCM) 2.2 does not restrict the number of comment records that can be submitted through HTTP requests, which allows remote attackers to cause a denial of service (disk consumption) via the coment parameter to (1) show_video.php or (2) topic.php.

Vulnerable Configurations

Part	Description	Count
Application	Awcm-Cms Awcm CMS AR WEB Content Manager 2.2	1

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Packetstorm

data source	https://packetstormsecurity.com/files/download/117975/awcm22-access.txt
id	PACKETSTORM:117975
last seen	2016-12-05
published	2012-11-08
reporter	Sooel Son
source	https://packetstormsecurity.com/files/117975/AWCM-2.2-Access-Bypass.html
title	AWCM 2.2 Access Bypass

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Packetstorm

References