Description
Buffer overflow in bbs100 before 3.2 allows remote attackers to cause a denial of service (crash) by attempting to login as the Guest user when another Guest user is already logged in, possibly related to the state_login_prompt function in state_login.c.
References (5)
Core 5
Core References
Patch x_refsource_confirm
http://www.ka.sara.nl/home/walter//bbs100/ChangeLog.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/37805
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/24747
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35244
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25924
Scores
EPSS
0.0156
EPSS Percentile
72.5%
Details
CWE
CWE-119
Status
published
Products (1)
bbs100/bbs100
< 3.0
Published
Jul 03, 2007
Tracked Since
Feb 18, 2026