Denial of Service in ZBServer Pro 1.5 for Windows

Reported January 15, 2002, by Tamer Sahin.

VERSIONS AFFECTED

  • ZBServer Pro 1.5 for Windows 2000, Windows NT, and Windows 9x

 

DESCRIPTION
A Denial of Service (DoS) condition exists in ZBServer Pro 1.5. If an attacker repeatedly sends a URL request with characters in excess of 25,000, the server quits responding.

 

VENDOR RESPONSE

The vendor, ZBSoft, has been notified but hasn't issued a patch.

 

CREDIT
Discovered by Tamer Sahin of Security Office

Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish