602Pro Lan Suite 2000a - Long HTTP Request Denial of Service

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1053527 漏洞类型
发布时间 2001-04-05 更新时间 2001-04-05
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/20728
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/2543/info

A denial of service vulnerability exists in versions of 602Pro Lan Suite.

A remote attacker may connect to port 80 of the vulnerable host. Via this connection, the attacker submits a long request composed of at least 1033 characters. This excess input causes an overflows of the server's input buffer and crashes Lansuite.exe and all applicable services. 

GET / HTTP/1.1
Proxy-Authorization:AAAAAAAAAAAAA.....

Where A x 1033 or more characters, as long as its
over 1032, it will work.