Gain a shell remotely : HTTP negative Content-Length buffer overflow

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.11183

Categoría: Gain a shell remotely

Título: HTTP negative Content-Length buffer overflow

Resumen: The web server was crashed by sending an invalid POST; HTTP request with a negative Content-Length field.

Descripción: Summary:
The web server was crashed by sending an invalid POST
HTTP request with a negative Content-Length field.

Vulnerability Impact:
An attacker may exploit this flaw to disable the service or
even execute arbitrary code on the system.

Affected Software/OS:
Null HTTPD 0.5.0 is known to be affected. Other versions or
products might be affected as well.

Solution:
Upgrade your web server.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Copyright Copyright (C) 2002 Michel Arboi

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.11183
Categoría:	Gain a shell remotely
Título:	HTTP negative Content-Length buffer overflow
Resumen:	The web server was crashed by sending an invalid POST; HTTP request with a negative Content-Length field.
Descripción:	Summary: The web server was crashed by sending an invalid POST HTTP request with a negative Content-Length field. Vulnerability Impact: An attacker may exploit this flaw to disable the service or even execute arbitrary code on the system. Affected Software/OS: Null HTTPD 0.5.0 is known to be affected. Other versions or products might be affected as well. Solution: Upgrade your web server. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Copyright	Copyright (C) 2002 Michel Arboi