PowerTCP WebServer for ActiveX 'DartWebserver.dll' Denial of Service Vulnerability
BID:58940
CVE-2012-5389 |Info
PowerTCP WebServer for ActiveX 'DartWebserver.dll' Denial of Service Vulnerability
| Bugtraq ID: | 58940 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2012-5389 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 08 2013 12:00AM |
| Updated: | Apr 08 2013 12:00AM |
| Credit: | Ken |
| Vulnerable: | |
| Not Vulnerable: | |
Discussion
PowerTCP WebServer for ActiveX 'DartWebserver.dll' Denial of Service Vulnerability
PowerTCP WebServer for ActiveX is prone to a denial-of-service vulnerability due to NULL-pointer dereference error.
Attackers can exploit this issue to crash the application (typically Internet Explorer), denying service to legitimate users.
PowerTCP WebServer for ActiveX 1.9.2 and prior versions are vulnerable.
PowerTCP WebServer for ActiveX is prone to a denial-of-service vulnerability due to NULL-pointer dereference error.
Attackers can exploit this issue to crash the application (typically Internet Explorer), denying service to legitimate users.
PowerTCP WebServer for ActiveX 1.9.2 and prior versions are vulnerable.
Solution / Fix
PowerTCP WebServer for ActiveX 'DartWebserver.dll' Denial of Service Vulnerability
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
PowerTCP WebServer for ActiveX 'DartWebserver.dll' Denial of Service Vulnerability
References:
References:
- Dart Communication Homepage (Dart Communication )
- [CVE-2012-5389] Null Pointer Derefence in Dart Webserver <= 1.9.2 (Ken)