← back
CVE-2004-2466

CVE-2004-2466

EPSS 74.7%
Vexday Risk Score
60Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 74.7%KEV nãoPoC públicaNuclei Metasploit simPatch
Lifecycle
20 Aug 2005Published on NVD
14 Aug 2007Metasploit module available
06 Aug 2010Public PoC
Weaponization speed
1812 daysto first PoC
724 daysto Metasploit module
Recommendation: Plan a near-term fix — a public PoC already exists.
chat.ghp in Easy Chat Server 1.2 allows remote attackers to cause a denial of service (server crash) via a long username parameter, possibly due to a buffer overflow. NOTE: it was later reported that 2.2 is also affected.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.