CVE-2004-2724
LionMax Software Chat Anywhere 2.72a - Denial of Service via Malformed Username
Title source: llmDescription
LionMax Software Chat Anywhere 2.72a allows remote attackers to cause a denial of service (server crash and client CPU consumption) via a username beginning with percent (%) followed by a null character.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17148
Exploit x_refsource_misc
http://www.autistici.org/fdonato/advisory/ChatAnywhere2.72a-adv.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1011080
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/9275
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/12398
Exploit mailing-list
x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2004-08/1183.html
Scores
EPSS
0.0168
EPSS Percentile
74.0%
Details
CWE
CWE-287
Status
published
Products (1)
lionmax_software/chat_anywhere
2.72a
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026