KarjaSoft Sami HTTP Server Multiple Remote Vulnerabilities
BID:12559
Info
KarjaSoft Sami HTTP Server Multiple Remote Vulnerabilities
| Bugtraq ID: | 12559 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 15 2005 12:00AM |
| Updated: | Feb 15 2005 12:00AM |
| Credit: | Ziv Kamir is credited with the discovery of this issue. |
| Vulnerable: |
KarjaSoft Sami HTTP Server 1.0.5 |
| Not Vulnerable: | |
Discussion
KarjaSoft Sami HTTP Server Multiple Remote Vulnerabilities
Multiple remote vulnerabilities affect KarjaSoft Sami HTTP server. These issues are due to poor input validation and a failure to handle malformed network-based requests.
The first issue is a directory traversal issue. The second issue is a denial of service issue.
An attacker may leverage these issues to reveal files outside of the Web server root directory or to crash the affected server.
Multiple remote vulnerabilities affect KarjaSoft Sami HTTP server. These issues are due to poor input validation and a failure to handle malformed network-based requests.
The first issue is a directory traversal issue. The second issue is a denial of service issue.
An attacker may leverage these issues to reveal files outside of the Web server root directory or to crash the affected server.
Exploit / POC
KarjaSoft Sami HTTP Server Multiple Remote Vulnerabilities
No exploit is required to leverage either of these issues.
No exploit is required to leverage either of these issues.
Solution / Fix
KarjaSoft Sami HTTP Server Multiple Remote Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
KarjaSoft Sami HTTP Server Multiple Remote Vulnerabilities
References:
References:
- Sami HTTP server Homepage (KarjaSoft)