The remote web server contains a CGI script or is itself subject to a denial of service attack. Description : According to its version number, the version of CVSTrac installed on the remote host contains a flaw related to its Wiki-style text output formatter that may allow an attacker to cause a partial denial of service, depending on the pages requested.

Upgrade to CVSTrac 2.0.1 or later. CVSS Base Score : 4.3 (AV:N/AC:M/Au:N/C:N/I:N/A:P)

• http://www.securityfocus.com/archive/1/458455/30/0/threaded

---

Updated on 2015-03-25