CVE-2004-0466 Information

Description

WebConnect 6.5 6.4.4 and possibly earlier versions allows remote attackers to cause a denial of service (hang) via a URL containing an MS-DOS device name such as (1) AUX (2) CON (3) PRN (4) COM1 or (5) LPT1.

Reference

http://marc.info/?l=bugtraq&m=110910838600145&w=2 http://secunia.com/advisories/14006/ http://www.cirt.dk/advisories/cirt-29-advisory.pdf http://www.kb.cert.org/vuls/id/552561 http://www.kb.cert.org/vuls/id/JSHA-69FVMM https://exchange.xforce.ibmcloud.com/vulnerabilities/19393