Surfnet 1.31 - CMD_CREDITCARD_CHARGE Denial of Service
| EKU-ID: 28953 | CVE: CVE-2004-1781;OSVDB-16993 | OSVDB-ID: |
| Author: Rift_XT | Published: 2004-01-02 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 28953 | CVE: CVE-2004-1781;OSVDB-16993 | OSVDB-ID: |
| Author: Rift_XT | Published: 2004-01-02 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/9348/info Surfnet is prone to a denial of service vulnerability via the CMD_CREDITCARD_CHARGE command. By issuing this command with malformed arguments, it is possible to crash the software. When the software crashes, it will drop the kiosk user into the underlying operating system. C:\Surfnet\WWWRoot\CMD_CREDITCARD_CHARGE:Charge=20