CVE-2005-0621

Enlight Software Scrapland - Denial of Service

Title source: rule

Description

Scrapland 1.0 and earlier allows remote attackers to cause a denial of service (server termination) by triggering an error, which is treated as a fatal error by the server, as demonstrated using (1) signed integers for size values, (2) an invalid model, (3) a "newpos" value that is less than or equal to a size value, or (4) partial packets.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · cdoswindows

https://www.exploit-db.com/exploits/849

View Code ZIP pw:eip

References (3)

[Vendor Advisory] http://secunia.com/advisories/14435

[Third Party Advisory] http://aluigi.altervista.org/adv/scrapboom-adv.txt

[Mailing List] http://marc.info/?l=full-disclosure&m=110961578504928&w=2

Scores

EPSS 0.0770

EPSS Percentile 91.9%

Details

Status published

Products (1)

enlight_software/scrapland 1.0

Published May 02, 2005

Tracked Since Feb 18, 2026