CVE-2007-2506

N/A Unknown
Published: May 04, 2007 Modified: April 23, 2026
View on NVD

Description

WebSpeed 3.x in OpenEdge 10.x in Progress Software Progress 9.1e, and certain other 9.x versions, allows remote attackers to cause a denial of service (infinite loop and daemon hang) via a messenger URL that invokes _edit.r with no additional parameters, as demonstrated by requests for cgiip.exe or wsisa.dll with WService=wsbroker1/_edit.r in the PATH_INFO.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://osvdb.org/35541
Source: cve@mitre.org
http://progress.atgnow.com/esprogress/resultDisplay.do?gotoLink=115&docType=1006&clusterName=CombinedCluster&contentId=12&groupId=3&answerGroup=1&score=1932&page=http%3A%2F%2Fprogress.atgnow.com%2Fesprogress%2Fdocs%2FSolutions%2FProgress%2FESERVER_P123694.xhtml&result=0&excerpt=P123694
Source: cve@mitre.org
http://secunia.com/advisories/25129
Source: cve@mitre.org
Vendor Advisory
http://www.ishare.nl/
Source: cve@mitre.org
http://www.securityfocus.com/archive/1/467375/100/0/threaded
Source: cve@mitre.org
http://www.securityfocus.com/archive/1/467376/100/0/threaded
Source: cve@mitre.org
http://www.securityfocus.com/bid/23778
Source: cve@mitre.org
Exploit Patch
http://osvdb.org/35541
Source: af854a3a-2127-422b-91ae-364da2661108
http://progress.atgnow.com/esprogress/resultDisplay.do?gotoLink=115&docType=1006&clusterName=CombinedCluster&contentId=12&groupId=3&answerGroup=1&score=1932&page=http%3A%2F%2Fprogress.atgnow.com%2Fesprogress%2Fdocs%2FSolutions%2FProgress%2FESERVER_P123694.xhtml&result=0&excerpt=P123694
Source: af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/25129
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.ishare.nl/
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/467375/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/archive/1/467376/100/0/threaded
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/23778
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit Patch

14 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
1.4%
80th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

progress