Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
ParaChat Server 4.0 does not log users off if the browser's back button is used, which allows remote attackers to cause a denial of service by repeatedly logging into a chat room, hitting the back button, then logging into the same chat room as a different user, which fills the chat room with invalid users.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ParaChat Phantom用户过多远程拒绝服务漏洞
Vulnerability Description
ParaChat是一款由Java编写的Internet Relay聊天服务程序。 ParaChat对用户使用WEB方式登录退出缺少正确处理,远程攻击者可以利用这个漏洞进行拒绝服务攻击。 如果用户使用WEB登录聊天室后,使用WEB浏览器上的的前进或者后退键退出聊天室,用户的帐户仍旧登录在聊天室中长达15分钟。恶意攻击者可以使用不同的用户名持续进行这样的操作,可导致聊天服务器过载用户,产生拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A