cFos Personal Net contains a vulnerability whereby multiple malformed POST requests may cause a denial of service condition via heap memory corruption.
cFos Personal Net v3.09 and prior versions
Denial of Service
Multiple malformed POST requests, received in less than 3000ms, causes cFos Personal Net to mishandle data, causing a heap memory corruption which may cause the application to become unresponsive.
BeyondTrust Prevention and Detection:
BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
- 33845 - cFos 3.09 and Prior Denial of Service (Zero-Day)
No mitigations are currently available.