Surfnet CMD_CREDITCARD_CHARGE服务拒绝漏洞

Surfnet CMD_CREDITCARD_CHARGE服务拒绝漏洞

漏洞ID 1107606 漏洞类型 其他
发布时间 2004-01-02 更新时间 2005-10-20
图片[1]-Surfnet CMD_CREDITCARD_CHARGE服务拒绝漏洞-安全小百科CVE编号 CVE-2004-1781
图片[2]-Surfnet CMD_CREDITCARD_CHARGE服务拒绝漏洞-安全小百科CNNVD-ID CNNVD-200412-426
漏洞平台 Windows CVSS评分 4.6
|漏洞来源
https://www.exploit-db.com/exploits/23512
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200412-426
|漏洞详情
InfoTouchSurfnetkiosk存在漏洞。本地用户可以借助CMD_CREDITCARD_CHARGE命令使Surfnet崩溃并且访问潜在的操作系统。
|漏洞EXP
source: http://www.securityfocus.com/bid/9348/info

Surfnet is prone to a denial of service vulnerability via the CMD_CREDITCARD_CHARGE command. By issuing this command with malformed arguments, it is possible to crash the software. When the software crashes, it will drop the kiosk user into the underlying operating system. 

C:SurfnetWWWRootCMD_CREDITCARD_CHARGE:Charge=20
|参考资料

来源:BID
名称:9348
链接:http://www.securityfocus.com/bid/9348

相关推荐: Linux Kernel Unauthorized SCSI Command Vulnerability

Linux Kernel Unauthorized SCSI Command Vulnerability 漏洞ID 1096446 漏洞类型 Access Validation Error 发布时间 2005-06-23 更新时间 2005-06-23 CVE…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享