VDB-9439 · CVE-2013-4100 · OSVDB 95002

Cryptocat do 2.0.21 Username denial of service

wpiseditHistoryDiffjsonxmlCTI

W Cryptocat do 2.0.21 została stwierdzona podatność. Podatnością dotknięta jest nieznana funkcja. Aktualizacja do wersji 2.0.22 eliminuje tę podatność. Potencjalne zabezpieczenie zostało opublikowane po ujawnieniu podatności.

Pole2013-07-11 11:41 AM2019-03-19 04:17 PM
nameCryptocatCryptocat
version<=2.0.21<=2.0.21
argumentUsernameUsername
risk11
historic00
cvss2_vuldb_basescore7.87.8
cvss2_vuldb_tempscore6.86.8
cvss2_vuldb_avNN
cvss2_vuldb_acLL
cvss2_vuldb_auNN
cvss2_vuldb_ciNN
cvss2_vuldb_iiNN
cvss2_vuldb_aiCC
cvss3_meta_basescore7.57.5
cvss3_meta_tempscore7.27.2
cvss3_vuldb_basescore7.57.5
cvss3_vuldb_tempscore7.27.2
date1352246400 (2012-11-07)1352246400 (2012-11-07)
locationWebsiteWebsite
typeBulletinBulletin
urlhttps://blog.crypto.cat/2012/11/security-update-our-first-full-audit/https://blog.crypto.cat/2012/11/security-update-our-first-full-audit/
coordination11
person_nameMario Heiderich/Krzysztof Koktowicz/Maxim RuppMario Heiderich/Krzysztof Koktowicz/Maxim Rupp
company_nameCure53Cure53
disputed00
price_0day$0-$5k$0-$5k
nameUpgradeUpgrade
date1352246400 (2012-11-07)1352246400 (2012-11-07)
upgrade_version2.0.222.0.22
cveCVE-2013-4100CVE-2013-4100
osvdb9500295002
mischttps://blog.crypto.cat/wp-content/uploads/2012/11/Cryptocat-2-Pentest-Report.pdfhttps://blog.crypto.cat/wp-content/uploads/2012/11/Cryptocat-2-Pentest-Report.pdf
seealso9432 9433 9434 9435 9436 9437 9438 9440 9441 9442 9443 9444 1448109432 9433 9434 9435 9436 9437 9438 9440 9441 9442 9443 9444 144810
cvss2_vuldb_eNDND
cvss2_vuldb_rlOFOF
cvss2_vuldb_rcCC
cvss3_vuldb_eXX
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
cvss3_vuldb_avNN
cvss3_vuldb_acLL
cvss3_vuldb_prNN
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cNN
cvss3_vuldb_iNN
cvss3_vuldb_aHH
cve_assigned1370995200
cwe0404 (odmowa usługi)

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!