anlgform.pl in Analog before 5.23 does not restrict access to the PROGRESSFREQ progress update command, which allows remote attackers to cause a denial of service (disk consumption) by using the command to report updates more frequently and fill the web server error log.
Score: 1.5
Priority: P4 - Informational (Low)
Score: 0.00672
Percentile:
0.70457
CVSS v2 Score: 5.0
Severity: