Provided by Aanval (Snort & Syslog Intrusion Detection and Correlation Engine) www.aanval.com
--
GEN:SID | 1:306 |
Message | EXPLOIT VQServer admin |
Summary | This event is generated when an attempt is made to exploit a vulnerability in VQ Server to cause a Denial of Service (DoS). |
Impact | Serious. A Denial of Service on the target server is possible. |
Detailed Information | vqServer is a personal web server that runs on Microsoft Windows, Linux and Solaris. Version 1.4.49 suffers from a DoS condition if a long GET request is issued to the server. Affected Systems: vqServer 1.4.49 |
Affected Systems | |
Attack Scenarios | Exploit scripts are available |
Ease of Attack | Simple. Exploits are available. |
Corrective Action | Upgrade to the latest non-affected version of the software. |
Additional References | Bugtraq: http://www.securityfocus.com/bid/1610 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2000-0766 vqSoft: http://www.vqsoft.com/ |
Rule References | bugtraq: 1610 cve: 2000-0766 nessus: 10354 url: www.vqsoft.com/vq/server/docs/other/control.html |
--
DID:713128
--
http://www.aanval.com/