Serva32 Web Server Denial Of Service Vulnerability Network Vulnerability

Summary

This host is running Serva32 web server and is prone to denial of service vulnerability.

Impact

Successful exploitation will let the remote unauthenticated attackers to cause a denial of service or possibly execute arbitrary code. Impact Level: Application

Solution

Upgrade to Serva32 Version 1.2.1 or later. For updates refer to http://www.vercot.com/~serva/

Insight

The flaw is caused the way Serva32 web server handles certain requests having huge length URI, which causes application to crash.

Affected

Serva32 1.2.00 RC1, Other versions may also be affected.

References

http://packetstormsecurity.org/files/view/101223
http://www.exploit-db.com/exploits/17266
http://www.securityfocus.com/bid/47760

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

CiscoKits CCNA TFTP Server 'Write' Command Denial Of Service Vulnerability
7-Zip Unspecified Archive Handling Vulnerability (Linux)
Google Chrome Multiple Denial of Service Vulnerabilities - January12 (Linux)
Adobe Reader/Acrobat JavaScript Method Handling Vulnerability (Linux)
Apache httpd Web Server Range Header Denial of Service Vulnerability

Serva32 web server Denial of Service Vulnerability

Take action and discover your vulnerabilities