UNKNOWNCVE-2018-25233
WebDrive 18.00.5057 Denial of Service via Secure WebDAV
Platform
windows
Component
webdrive
WebDrive 18.00.5057 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the username field during Secure WebDAV connection setup. Attackers can input a buffer-overflow payload of 5000 bytes in the username parameter and trigger a connection test to cause the application to crash.
How to fix
Actualizar WebDrive a una versión posterior a la 18.00.5057. Esto solucionará la vulnerabilidad de denegación de servicio causada por el manejo incorrecto de cadenas largas en el campo de nombre de usuario durante la configuración de la conexión Secure WebDAV.
Monitor your dependencies automatically
Get notified when new vulnerabilities affect your projects. Free forever.
Start free