Improper input validation in Windriver Vxworks
CVE-2013-0716
The web server in Wind River VxWorks 5.5 through 6.9 allows remote attackers to cause a denial of service (daemon crash) via a crafted URI.
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.007 (71.9th percentile) — read the EPSS interpretation.
Affected products
- Windriver Vxworks — versions 6.5, 6.6, 6.7
- N/a — versions n/a
Weakness classification (CWE)
References
- vultures@jpcert.or.jp (x_refsource_MISC)
- vultures@jpcert.or.jp (x_refsource_MISC)
- JVNDB-2013-000023 (x_refsource_JVNDB, third-party-advisory)
- JVN#41022517 (x_refsource_JVN, third-party-advisory)