Baltimore Technologies WEBsweeper DoS Vulnerability
BID:2465
Info
Baltimore Technologies WEBsweeper DoS Vulnerability
| Bugtraq ID: | 2465 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 08 2001 12:00AM |
| Updated: | Mar 08 2001 12:00AM |
| Credit: | Discovered and posted to Bugtraq by Peter Gründl <[email protected]> on Mar 8, 2001. |
| Vulnerable: |
Baltimore Technologies WEBsweeper 4.0 |
| Not Vulnerable: | |
Discussion
Baltimore Technologies WEBsweeper DoS Vulnerability
Baltimore Technology WEBsweeper is subject to a denial of service condition. Submitting an unusually long HTTP request through WEBsweeper will cause the consumption of all available memory on the server where WEBsweeper resides.
Baltimore Technology WEBsweeper is subject to a denial of service condition. Submitting an unusually long HTTP request through WEBsweeper will cause the consumption of all available memory on the server where WEBsweeper resides.
Exploit / POC
Baltimore Technologies WEBsweeper DoS Vulnerability
The following exploit has been provided by honoriak <[email protected]>:
The following exploit has been provided by honoriak <[email protected]>:
Solution / Fix
Baltimore Technologies WEBsweeper DoS Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Baltimore Technologies WEBsweeper DoS Vulnerability
References:
References:
- WEBsweeper Product Homepage (Baltimore Technologies)