Group Chat in BarracudaDrive Web Server prior to 3.8 allows remote authenticated users to cause a denial of service (crash) via a HTTP request to /eh/chat.ehintf/C. that does not contain a Connection ID, which results in a NULL pointer dereference.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
real time logic barracudadrive web server 3.7.2 |
||
real time logic barracudadrive web server home server 3.7.2 |