Real Networks RealServer View-Source DoS Vulnerability
BID:1288
Info
Real Networks RealServer View-Source DoS Vulnerability
| Bugtraq ID: | 1288 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Jun 01 2000 12:00AM |
| Updated: | Jun 01 2000 12:00AM |
| Credit: | Discovered by USSR Labs <[email protected]> on June 1, 2000. |
| Vulnerable: |
RealNetworks Real Server 8.0 Beta RealNetworks Real Server 7.0.1 RealNetworks Real Server 7.0 |
| Not Vulnerable: |
RealNetworks Real Server 6.0 x |
Discussion
Real Networks RealServer View-Source DoS Vulnerability
RealServer 7.0 will crash if it receives a request for a specific file with an unspecified variable value.
RealServer 7.0 will crash if it receives a request for a specific file with an unspecified variable value.
Exploit / POC
Real Networks RealServer View-Source DoS Vulnerability
http://targetIP:port/viewsource/template.html?
http://targetIP:port/viewsource/template.html?