Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2005-1402

Published: 03/05/2005 Updated: 05/09/2008
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Mtp-target

Vulnerability Summary

Integer signedness error in certain older versions of the NeL library, as used in Mtp-Target 1.2.2 and previous versions, and possibly other products, allows remote malicious users to cause a denial of service (memory consumption or server crash) via a negative value in a STLport call, which is not caught by a signed comparison.

Vulnerable Product Search on Vulmon Subscribe to Product

mtp-target mtp-target

Exploits

Exploit DB: Mtp-Target Server 1.2.2 - Memory Corruption
source: wwwsecurityfocuscom/bid/13463/info The Mtp-Target server is prone to a memory corruption vulnerability The issue exists because a comparison fails to ensure that an integer value parameter retrieved from a client is signed A check is made to ensure that the user-supplied value is less than 1000000 bytes If the value passed is F ...

References

NVD-CWE-Otherhttp://aluigi.altervista.org/adv/mtpbugs-adv.txthttp://www.security-focus.com/archive/1/397304https://nvd.nist.govhttps://www.exploit-db.com/exploits/25584/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook