Previous articleBack to news listNext article
|
Sponsored links |
Want to become one of our authors and see your work published on ALLSeek.iNFO ?
|
| Savant Web Server Can Be Crashed By Remote Users Requesting '/%x' and Similar Strings |
|---|
Categorie: Vulnerability
Posted: 2003-09-26 by ReCall
Views: 364
Source: Click here
| Current Rating: Not rated
|
|
| Details |
|---|
Description: Phuong Nguyen reported a denial of service vulnerability in the Savant Web Server. A remote user can cause the web service to crash.
It is reported that a remote user can send an HTTP GET request containing various characters to cause the web service to crash with an "invalid memory reference" error. Any of the following characters can reportedly be used:
/%x
/%f
/%I
/%n
Other similar strings may also trigger the flaw.
The report indicates that such a request will cause the web server to continually redirect 'index.html' to itself, creating an infinite loop and then crashing.
The vendor was reportedly notified without response.
Impact: A remote user can cause the web service to crash.
Solution: No solution was available at the time of this entry.
|
| Syndication |
|---|
Permalink Email this
The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=473
|
| User comments (post your comments ) |
|---|
Only registerd members can post comments and articles
|
|
Previous articleBack to news listNext article
|
