Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs  Black Box Testing  Vulnerability Assessment  Vulnerability Scanner SecuriTeam™ in Your Inbox   E-mail this article to a friend New vulnerability? New tool? Tell us	IBM HTTP Server remote buffer overflow (DoS) 3 Dec. 2000    Summary IBM HTTP Server (IHS) powered by Apache is based on the Apache HTTP Server, which is the most popular server on the Web. This HTTP Server runs on AIX, Solaris, Windows NT, HP-UX, and Linux. A security vulnerability in the product allows remote attackers to launch a denial of service attack on the server by sending a large amount of '.' (dots) in a HTTP URL request.   Credit: The information has been provided by benjurry.    Details Audit your web server for security holes - see what the hackers see. Sign up for a scan today - risk free! Vulnerable systems: IBM HTTP Server 1.3.6 Immune systems: IBM HTTP Server 1.3.12 On an unpatched IBM HTTP Server, if you request an HTTP GET with the filename of the sort of: /......(move than 216 ".")aaa The server (in this case it was running on a Windows NT system) will respond with a BSOD displaying the following message: ***STOP:0x0000001e(0X00000005,0X804B3A51,0X00000000,0X00000000)KMODE_EXCEPTI ON_NOT_HANDLED. ***Address 804B3A51 base at 80400000,Datastamp 384D9B17-ntoskrnl.exe Since this is a BSOD (Blue screen of death), not all servers will automatically recover, making it necessary for an administrator to restart the server manually. Solution: Update to IBM HTTP Server (IHS) 1.3.12.  Comments: Subject:   Date:  From:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews  Related Articles Cisco BBSM Captive Portal Cross-site Scripting Cisco Unified Communications Manager Denial of Service Vulnerabilities Novell eDirectory Unauthenticated Access to SOAP Interface Call of Duty Denial of Service Wonderware SuiteLink Denial of Service Vulnerability WebMod Multiple Vulnerabilities IAX2 Incomplete 3-Way Handshake (Spoofing) Multiple Vendor OpenOffice Vulnerabilities Apple Safari WebKit PCRE Handling Integer Overflow Vulnerability Cisco Network Admission Control Shared Secret Vulnerability ClamAV libclamav PeSpin Heap Overflow Vulnerability ClamAV libclamav PE WWPack Heap Overflow Vulnerability IBM Informix Pre-Authentication Stack Overflow Adobe Flash Player DeclareFunction2 Invalid Object Use Vulnerability HP OpenView NNM Buffer Overflow  Featured Articles Microsoft Windows I2O Filter Utility Driver (i2omgmt.sys) Local Privilege Escalation Vulnerability Adobe Acrobat Javascript PDF Security Feature Bypass and Memory Corruption Vulnerabilities Multiple Vendor rdesktop Vulnerabilities Wonderware SuiteLink Denial of Service Vulnerability PHP Multibyte Shell Command Escaping Bypass Vulnerability Akamai Download Manager Arbitrary Program Execution Vulnerability SugarCRM Community Edition Local File Disclosure Vulnerability
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus - Blogs - CVEs

Copyright © 1998-2008 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®