CVE-2014-9465

Published Feb 19, 2015
Last updated 9 years ago
CVSS info 5.0
Overview

Description: senddocument.php in Zarafa WebApp before 2.0 beta 3 and WebAccess in Zarafa Collaboration Platform (ZCP) 7.x before 7.1.12 beta 1 and 7.2.x before 7.2.0 beta 1 allows remote attackers to cause a denial of service (/tmp disk consumption) by uploading a large number of files.
Source: cve@mitre.org
NVD status: Analyzed
Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P
Weaknesses

nvd@nist.gov: CWE-399
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF47C9F0-D8DA-4B55-89EB-9B2C9383ADB9"
          },
          {
            "criteria": "cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56BDB5A0-0839-4A20-A003-B8CD56F48171"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:zarafa:webapp:*:beta2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A856DB8-7D8B-44F1-9222-869B91EBEAE6",
            "versionEndIncluding": "2.0"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27064810-8639-4082-9B7C-F2E7B07A5338"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "665E9967-1FA2-4513-946D-E1E44FB52390"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E639AC0-D5B6-41BC-AAAD-54A3A28BEABB"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9284DC2-7AE5-4DEC-966C-A2A59926A775"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF843A2F-3478-414E-8CE0-1166DEE4D6FE"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34E3625A-90EC-4DF9-8D0E-AAB3996300A7"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C98B24C-B67F-4908-AF6A-D69D879E677B"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24C9EA8C-0C44-4C72-94F5-8BFBA4604B9F"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "46CBFF6F-761D-400B-8BD7-412D8A47A407"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CEEFE371-9964-4510-8A34-C1D63B031DF0"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA2477AA-B97D-43E2-A3F3-4B03715D311C"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31F22097-C67F-45E0-B0D1-3E99BABFF943"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.12:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "592C3C16-8786-43BA-B668-FD6EED305E70"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.0.13:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BD78668-9330-44AB-A922-720045B2988D"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A2F9CFB-6879-434A-9B6B-05C90534E8F8"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "249862F3-4BB2-4C51-8D82-7E5AAF00D245"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFAF932D-F390-44E8-8E73-7C8FEB06D6B2"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B21E237-B31F-412A-A56F-9D2069A9D5D4"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0412B21-DD63-4CC2-961E-D5A19E552029"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C882F7FD-A474-4BC2-A4DA-92514452B20C"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3EB31858-6696-40CE-8E67-2E1646532819"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AD82094-AC0F-4D1B-9C33-3F73A995CF35"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B30109DB-097B-4ED9-958F-713D7ADCB760"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.9:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5A990D2-F84A-49E8-96B9-F744F6B7B598"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E4190B0-03BF-4A30-A311-63BC3E514582"
          },
          {
            "criteria": "cpe:2.3:a:zarafa:zarafa_collaboration_platform:7.1.11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "28E0C6E9-CB3F-488A-ADC8-7E1D31C90625"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
