CVE-2007-2197
N/A
N/A
Summary
Race condition in the NeatUpload ASP.NET component 1.2.11 through 1.2.16, 1.1.18 through 1.1.23, and trunk.379 through trunk.445 allows remote attackers to obtain other clients' HTTP responses via multiple simultaneous requests, which triggers multiple calls to HttpWorkerRequest.FlushResponse for the same HttpWorkerRequest object and causes a buffer to be reused for a different request.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/23578
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33785
- http://www.securityfocus.com/archive/1/466404/100/0/threaded
- http://secunia.com/advisories/25003
References
- http://www.securityfocus.com/bid/23578
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33785
- http://www.securityfocus.com/archive/1/466404/100/0/threaded
- http://secunia.com/advisories/25003
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.