Primary

Context

WebDrive Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in WebDrive version 18.00.5057. This issue allows local attackers to crash the application by entering an excessively long string, specifically a buffer-overflow payload of 5000 bytes, in the username field during the setup of a Secure WebDAV connection. The vulnerability is triggered when the application attempts to test the connection, leading to a crash.

Impact

Exploitation of this vulnerability causes the WebDrive application to crash, disrupting any ongoing tasks or file transfers.

Reproduction

To reproduce this vulnerability, first create a text file containing a 5000-byte string, which can be done using a simple Python script. After preparing the payload, open WebDrive and initiate a new Secure WebDAV connection. Paste the payload into the username field, enter a password, and click 'Test Connection'. The application will crash, demonstrating the denial-of-service vulnerability.

Added: Mar 30, 2026, 12:22 PM

Updated: Mar 30, 2026, 12:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

4.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

4.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

WebDrive Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

South River Technologies WebDrive

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating