Seapine Software TestTrack server allows a remote attacker to cause a denial of service (high CPU) via (1) TestTrackWeb.exe and (2) ttcgi.exe by connecting to port 99 and disconnecting without sending any data.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Testtrack | Seapine_software | * | * |
References
- http://www.ntbugtraq.com/default.asp?pid=36\u0026sid=1\u0026A2=ind9903\u0026L=NTBUGTRAQ\u0026P=R1215
- http://www.ntbugtraq.com/default.asp?pid=36\u0026sid=1\u0026A2=ind9906\u0026L=NTBUGTRAQ\u0026P=R1680
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1948
- http://www.ntbugtraq.com/default.asp?pid=36\u0026sid=1\u0026A2=ind9903\u0026L=NTBUGTRAQ\u0026P=R1215
- http://www.ntbugtraq.com/default.asp?pid=36\u0026sid=1\u0026A2=ind9906\u0026L=NTBUGTRAQ\u0026P=R1680
- https://exchange.xforce.ibmcloud.com/vulnerabilities/1948