NI3
11-04-2003, 01:19 PM
Plug and Play Web Server ***** Server Denial of Service vulnerability
Date: 2003-11-03
Security-Corporation ID : SC-0723
Author : Oliver Karow <[Only registered and activated users can see links]>
Product : Plug & Play server
Source Message Contents :
DoS in Plug and Play Web Server ***** Server
==============================
Plug & Play server is a [Only registered and activated users can see links]*****
server, running on Windows platforms.
Version: 1.0002c
--------
Vendor: [Only registered and activated users can see links]
-------
Vulnerability:
--------------
Sending the following request "GET /asdf.? [Only registered and activated users can see links]" to TCP Port 8080 will
stop the ***** Service, showing a "Runtime Error 12001 - Parameter 1 of the
method used is invalid or not appropriate" on the console.
The ***** Service has to be restarted.
Misc:
------
There are still several other (older) vulns in Plug & Play Webserver. It
seems
that the vendor does not update the software anymore.
Credit:
-------
Oliver.karow[AT]gmx.de
[Only registered and activated users can see links]
--
NEU FR ALLE - GMX MediaCenter - fr Fotos, Musik, Dateien...
Fotoalbum, File Sharing, MMS, Multimedia-Gru, GMX FotoService
Jetzt kostenlos anmelden unter [Only registered and activated users can see links]
+++ GMX - die erste Adresse fr Mail, Message, More! +++
Date: 2003-11-03
Security-Corporation ID : SC-0723
Author : Oliver Karow <[Only registered and activated users can see links]>
Product : Plug & Play server
Source Message Contents :
DoS in Plug and Play Web Server ***** Server
==============================
Plug & Play server is a [Only registered and activated users can see links]*****
server, running on Windows platforms.
Version: 1.0002c
--------
Vendor: [Only registered and activated users can see links]
-------
Vulnerability:
--------------
Sending the following request "GET /asdf.? [Only registered and activated users can see links]" to TCP Port 8080 will
stop the ***** Service, showing a "Runtime Error 12001 - Parameter 1 of the
method used is invalid or not appropriate" on the console.
The ***** Service has to be restarted.
Misc:
------
There are still several other (older) vulns in Plug & Play Webserver. It
seems
that the vendor does not update the software anymore.
Credit:
-------
Oliver.karow[AT]gmx.de
[Only registered and activated users can see links]
--
NEU FR ALLE - GMX MediaCenter - fr Fotos, Musik, Dateien...
Fotoalbum, File Sharing, MMS, Multimedia-Gru, GMX FotoService
Jetzt kostenlos anmelden unter [Only registered and activated users can see links]
+++ GMX - die erste Adresse fr Mail, Message, More! +++