Flock Infinite Loop Multiple Denial of Service Vulnerabilities
BID:31044
Info
Flock Infinite Loop Multiple Denial of Service Vulnerabilities
| Bugtraq ID: | 31044 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 06 2008 12:00AM |
| Updated: | Sep 08 2008 06:01PM |
| Credit: | Gjoko 'LiquidWorm' Krstic |
| Vulnerable: |
Flock Flock 1.2.5 |
| Not Vulnerable: | |
Discussion
Flock Infinite Loop Multiple Denial of Service Vulnerabilities
Flock is prone to multiple remote denial-of-service vulnerabilities because the application fails to properly handle unexpected input.
Successfully exploiting these issues allows remote attackers to cause the application to freeze, denying service to legitimate users.
Flock 1.2.5 is vulnerable; other versions may also be affected.
Flock is prone to multiple remote denial-of-service vulnerabilities because the application fails to properly handle unexpected input.
Successfully exploiting these issues allows remote attackers to cause the application to freeze, denying service to legitimate users.
Flock 1.2.5 is vulnerable; other versions may also be affected.
Exploit / POC
Flock Infinite Loop Multiple Denial of Service Vulnerabilities
Attackers can use a browser to launch attacks.
The following HTML code is available:
Attackers can use a browser to launch attacks.
The following HTML code is available:
Solution / Fix
Flock Infinite Loop Multiple Denial of Service Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].