Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 24/04/2007 Updated: 16/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Race condition in the NeatUpload ASP.NET component 1.2.11 up to and including 1.2.16, 1.1.18 up to and including 1.1.23, and trunk.379 through trunk.445 allows remote malicious users to obtain other clients' HTTP responses via multiple simultaneous requests, which triggers multiple calls to HttpWorkerRequest.FlushResponse for the same HttpWorkerRequest object and causes a buffer to be reused for a different request.

Vulnerable Product	Search on Vulmon	Subscribe to Product
brettle development neatupload 1.2.12
brettle development neatupload 1.2.13
brettle development neatupload 1.1.22
brettle development neatupload 1.1.23
brettle development neatupload 1.2.11
brettle development neatupload trunk.380
brettle development neatupload trunk.381
brettle development neatupload 1.1.18
brettle development neatupload 1.1.19
brettle development neatupload 1.2.14
brettle development neatupload 1.2.15
brettle development neatupload 1.1.20
brettle development neatupload 1.1.21
brettle development neatupload 1.2.16
brettle development neatupload trunk.379

NVD-CWE-Other http://www.securityfocus.com/bid/23578 http://secunia.com/advisories/25003 https://exchange.xforce.ibmcloud.com/vulnerabilities/33785 http://www.securityfocus.com/archive/1/466404/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2197

Vulnerability Summary

References

Vulmon Search

About

Products

Connect