DoS in Plug and Play Web Server Proxy Server
==============================
Plug & Play server is a HTTP/FTP/NEWS/MAIL/TELNET/DNS/DHCP/HTTP-PROXY
server, running on Windows platforms.
Version: 1.0002c
--------
Vendor: www.pandpsoft.com
-------
Vulnerability:
--------------
Sending the following request "GET /asdf.? HTTP/1.0" to TCP Port 8080 will
stop the Proxy Service, showing a "Runtime Error 12001 - Parameter 1 of the
method used is invalid or not appropriate" on the console.
The Proxy Service has to be restarted.
Misc:
------
There are still several other (older) vulns in Plug & Play Webserver. It
seems
that the vendor does not update the software anymore.
==============================
Plug & Play server is a HTTP/FTP/NEWS/MAIL/TELNET/DNS/DHCP/HTTP-PROXY
server, running on Windows platforms.
Version: 1.0002c
--------
Vendor: www.pandpsoft.com
-------
Vulnerability:
--------------
Sending the following request "GET /asdf.? HTTP/1.0" to TCP Port 8080 will
stop the Proxy Service, showing a "Runtime Error 12001 - Parameter 1 of the
method used is invalid or not appropriate" on the console.
The Proxy Service has to be restarted.
Misc:
------
There are still several other (older) vulns in Plug & Play Webserver. It
seems
that the vendor does not update the software anymore.
Credit:
-------
Oliver.karow[AT]gmx.de
www.oliverkarow.de/research.htm
--
NEU FÜR ALLE - GMX MediaCenter - für Fotos, Musik, Dateien...
Fotoalbum, File Sharing, MMS, Multimedia-Gruß, GMX FotoService
Jetzt kostenlos anmelden unter http://www.gmx.net
+++ GMX - die erste Adresse für Mail, Message, More! +++
[ reply ]