WebDrive 18.00.5057 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the username field during Secure WebDAV connection setup. Attackers can input a buffer-overflow payload of 5000 bytes in the username parameter and trigger a connection test to cause the application to crash.
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XSouthrivertech Webdrive
APPSouthrivertech18.00.5057
Related vulnerabilities
A vulnerability was found in South River WebDrive 18.00.5057. It has been declared as problematic. This vulner...
Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SF...
An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. There is Remote Code Execution du...
Insufficient path validation when writing a file via WebDAV in South River Technologies' Titan MFT and Titan S...
A session fixation vulnerability in South River Technologies' Titan MFT and Titan SFTP servers on Linux and Wi...