Ntop HTTP Basic Authentication NULL Pointer Dereference Denial Of Service Vulnerability Network Vulnerability

Summary

The 'ntop' tool is prone to a denial-of-service vulnerability because of a NULL-pointer dereference that occurs when crafted HTTP Basic Authentication credentials are received by the embedded webserver. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. This issue affects ntop 3.3.10 other versions may also be affected.

References

http://www.securityfocus.com/archive/1/505862
http://www.securityfocus.com/archive/1/505876
http://www.securityfocus.com/bid/36074

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-2732

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Apache Tomcat NIO Connector Denial of Service Vulnerability
AdaptCMS 'init.php' Remote File Include Vulnerability
Adobe BlazeDS XML and XML External Entity Injection Vulnerabilities
Apache Subversion Module Metadata Accessible
Apache Struts Cross Site Scripting Vulnerability

ntop HTTP Basic Authentication NULL Pointer Dereference Denial Of Service Vulnerability

Take action and discover your vulnerabilities