- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 24621
- Проверка EDB
-
- Пройдено
- Автор
- MARC RUEF
- Тип уязвимости
- DOS
- Платформа
- PHP
- CVE
- cve-2004-1699
- Дата публикации
- 2004-09-21
Pinnacle ShowCenter 1.51 - Web Interface Skin Denial of Service
Код:
source: https://www.securityfocus.com/bid/11232/info
The Pinnacle Systems ShowCenter web-based interface is reported prone to a remote denial of service vulnerability.
The issue exists due to a lack of sanity checks performed on the Skin parameter of a ShowCenter script.
It is reported that the affect of this attack will be persistent, any request for the ShowCenter web-based interface received subsequent to an attack will result in 'File or Folder not found' error message, as the interface fails to render.
A remote attacker may exploit this condition to persistently deny service to the ShowCenter web-based interface.
http://www.example.com:8000/ShowCenter/SettingsBase.php?Skin=ATK- Источник
- www.exploit-db.com
