Novell Nsure Audit Remote Denial Of Service Vulnerability
BID:13359
Info
Novell Nsure Audit Remote Denial Of Service Vulnerability
| Bugtraq ID: | 13359 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 25 2005 12:00AM |
| Updated: | Apr 25 2005 12:00AM |
| Credit: | Discovery of this issue is credited to Dennis Rand. |
| Vulnerable: |
Novell Nsure Audit 1.0.1 |
| Not Vulnerable: |
Novell Nsure Audit 1.0.3 Novell Nsure Audit 1.0.2 |
Discussion
Novell Nsure Audit Remote Denial Of Service Vulnerability
Novell Nsure Audit is prone to a remote denial of service vulnerability. The issue manifests when the 'Webadmin.exe' executable handles multiple connections in rapid succession.
When the vulnerability is triggered, the executable will stop responding effectively denying service for legitimate users.
Novell Nsure Audit is prone to a remote denial of service vulnerability. The issue manifests when the 'Webadmin.exe' executable handles multiple connections in rapid succession.
When the vulnerability is triggered, the executable will stop responding effectively denying service for legitimate users.
Exploit / POC
Novell Nsure Audit Remote Denial Of Service Vulnerability
No exploit is required.
No exploit is required.
Solution / Fix
Novell Nsure Audit Remote Denial Of Service Vulnerability
Solution:
The vendor reports that Nsure Audit 1.0.2 and Nsure Audit 1.0.3 are not vulnerable to this attack. Customers are advised to upgrade to Nsure Audit 1.0.3to address this issue.
Solution:
The vendor reports that Nsure Audit 1.0.2 and Nsure Audit 1.0.3 are not vulnerable to this attack. Customers are advised to upgrade to Nsure Audit 1.0.3to address this issue.
References
Novell Nsure Audit Remote Denial Of Service Vulnerability
References:
References: