Summary
This host is running Serva32 web server and is prone to denial of service vulnerability.
Impact
Successful exploitation will let the remote unauthenticated attackers to cause a denial of service or possibly execute arbitrary code.
Impact Level: Application
Solution
Upgrade to Serva32 Version 1.2.1 or later.
For updates refer to http://www.vercot.com/~serva/
Insight
The flaw is caused the way Serva32 web server handles certain requests having huge length URI, which causes application to crash.
Affected
Serva32 1.2.00 RC1, Other versions may also be affected.
References
Severity
Classification
-
CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C
Related Vulnerabilities
- CiscoKits CCNA TFTP Server 'Write' Command Denial Of Service Vulnerability
- 7-Zip Unspecified Archive Handling Vulnerability (Linux)
- Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Linux)
- Adobe Reader/Acrobat JavaScript Method Handling Vulnerability (Linux)
- Apache httpd Web Server Range Header Denial of Service Vulnerability