Race condition in the NeatUpload ASP.NET component 1.2.11 through 1.2.16, 1.1.18 through 1.1.23, and trunk.379 through trunk.445 allows remote attackers to obtain other clients' HTTP responses via multiple simultaneous requests, which triggers multiple calls to HttpWorkerRequest.FlushResponse for the same HttpWorkerRequest object and causes a buffer to be reused for a different request.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-24T17:00:00

Updated: 2024-08-07T13:23:51.096Z

Reserved: 2007-04-24T00:00:00

Link: CVE-2007-2197

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-04-24T17:19:00.000

Modified: 2024-11-21T00:30:09.910

Link: CVE-2007-2197

cve-icon Redhat

No data.