Vulnerabilities > CVE-2012-2438 - Resource Management Errors vulnerability in Awcm-Cms AR web Content Manager 2.2
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
ar web content manager (AWCM) 2.2 does not restrict the number of comment records that can be submitted through HTTP requests, which allows remote attackers to cause a denial of service (disk consumption) via the coment parameter to (1) show_video.php or (2) topic.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Packetstorm
| data source | https://packetstormsecurity.com/files/download/117975/awcm22-access.txt |
| id | PACKETSTORM:117975 |
| last seen | 2016-12-05 |
| published | 2012-11-08 |
| reporter | Sooel Son |
| source | https://packetstormsecurity.com/files/117975/AWCM-2.2-Access-Bypass.html |
| title | AWCM 2.2 Access Bypass |
References
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0039.html
- http://archives.neohapsis.com/archives/bugtraq/2012-11/0039.html
- http://packetstormsecurity.org/files/117975/AWCM-2.2-Access-Bypass.html
- http://packetstormsecurity.org/files/117975/AWCM-2.2-Access-Bypass.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79927
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79927