Pinnacle ShowCenter Skin DoS

medium Nessus Plugin ID 14824

Language:

Synopsis

A remote application is vulnerable to a denial of service.

Description

The remote host runs the Pinnacle ShowCenter web-based interface.

The remote version of this software is vulnerable to a remote denial of service due to a lack of sanity checks on skin parameter.

With a specially crafted URL, an attacker can deny service of the ShowCenter web-based interface.

Solution

Upgrade to the newest version of this software.

Plugin Details

Severity: Medium

ID: 14824

File Name: pinnacle_sc_skin_dos.nasl

Version: 1.16

Type: remote

Family: CGI abuses

Published: 9/27/2004

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Exploit Ease: No exploit is required

Vulnerability Publication Date: 9/21/2004

Reference Information

CVE: CVE-2004-1699

BID: 11232

Detections

Analytics