AIDeX Mini-Webserver HTTP Request Remote Denial of Service Vulnerability

Bugtraq ID:	21816
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Dec 29 2006 12:00AM
Updated:	Jan 04 2007 06:27PM
Credit:	shinnai is credited with the discovery of this vulnerability.
Vulnerable:	AIDeX Mini-Webserver 1.1
Not Vulnerable:

AIDeX Mini-Webserver HTTP Request Remote Denial of Service Vulnerability

AIDeX Mini-Webserver is prone to a remote denial-of-service vulnerability.

Exploiting this issue allows remote attackers to crash the server application, denying further service to legitimate users.

This issue affects version 1.1; other versions may also be vulnerable.

AIDeX Mini-Webserver HTTP Request Remote Denial of Service Vulnerability

An attacker can exploit these issues using standard networking tools.

The following proof-of-concept exploit is available:

• /data/vulnerabilities/exploits/21816.py

AIDeX Mini-Webserver HTTP Request Remote Denial of Service Vulnerability

Solution:
Currently we are not aware of any solutions for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

AIDeX Mini-Webserver HTTP Request Remote Denial of Service Vulnerability

References:

• AIDeX Mini-Webserver Homepage (AIDeX)