Xerver 4.32 allows remote authenticated users to cause a denial of service (daemon crash) via a non-numeric web port assignment in the management interface. NOTE: this can be leveraged by non-authenticated attackers using CVE-2009-4657.
Software | From | Fixed in |
---|---|---|
omidrouhani / xerver | 4.32 | 4.32.x |