StorageSoft ImageCast DoS Vulnerability
BID:2174
Info
StorageSoft ImageCast DoS Vulnerability
| Bugtraq ID: | 2174 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 08 2001 12:00AM |
| Updated: | Jan 08 2001 12:00AM |
| Credit: | Discovered and posted to Bugtraq by Peter <[email protected]> on Jan 8, 2001. |
| Vulnerable: |
StorageSoft ImageCast 4.1 |
| Not Vulnerable: |
StorageSoft ImageCast 4.5 |
Discussion
StorageSoft ImageCast DoS Vulnerability
StorageSoft ImageCast is an imaging application which migrates a replication of an existing desired hard drive to a target drive. All settings, tasks and resources are configured in the ImageCast Control Center (ICCC).
ImageCast is subject to a denial of service. By sending unusually long strings to the ICCC service listening on port 12002, the program will consume all available CPU usage refusing any new connections. Additionally, sending multiple packets containing long strings to port 8081 will cause the ICCC service (ICCC.exe) to crash completely. A restart of the application is required in order to gain normal functionality.
StorageSoft ImageCast is an imaging application which migrates a replication of an existing desired hard drive to a target drive. All settings, tasks and resources are configured in the ImageCast Control Center (ICCC).
ImageCast is subject to a denial of service. By sending unusually long strings to the ICCC service listening on port 12002, the program will consume all available CPU usage refusing any new connections. Additionally, sending multiple packets containing long strings to port 8081 will cause the ICCC service (ICCC.exe) to crash completely. A restart of the application is required in order to gain normal functionality.