CVE-2004-2164
published 2004-12-31CVE-2004-2164: shoprestoreorder.asp in VP-ASP 5.0 does not close the database connection when a user restores a previous order, which allows remote attackers to cause a…
PriorityP416medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.75%
75.1th percentile
shoprestoreorder.asp in VP-ASP 5.0 does not close the database connection when a user restores a previous order, which allows remote attackers to cause a denial of service (connection consumption).
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| virtual_programming | vp-asp | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/12611http://www.osvdb.org/10071http://www.securityfocus.com/bid/11228http://www.securitytracker.com/alerts/2004/Sep/1011359.htmlhttp://www.vpasp.com/virtprog/info/faq_securityfixes.htmhttps://exchange.xforce.ibmcloud.com/vulnerabilities/17436http://secunia.com/advisories/12611http://www.osvdb.org/10071http://www.securityfocus.com/bid/11228http://www.securitytracker.com/alerts/2004/Sep/1011359.htmlhttp://www.vpasp.com/virtprog/info/faq_securityfixes.htmhttps://exchange.xforce.ibmcloud.com/vulnerabilities/17436
2004-12-31
Published