5 lines
No EOL
382 B
Text
5 lines
No EOL
382 B
Text
source: http://www.securityfocus.com/bid/9348/info
|
|
|
|
Surfnet is prone to a denial of service vulnerability via the CMD_CREDITCARD_CHARGE command. By issuing this command with malformed arguments, it is possible to crash the software. When the software crashes, it will drop the kiosk user into the underlying operating system.
|
|
|
|
C:\Surfnet\WWWRoot\CMD_CREDITCARD_CHARGE:Charge=20 |