Polycom ViaVideo服务拒绝漏洞

64次阅读
没有评论

Polycom ViaVideo服务拒绝漏洞

漏洞ID 1107044 漏洞类型 其他
发布时间 2002-10-15 更新时间 2005-10-20
Polycom ViaVideo服务拒绝漏洞CVE编号 CVE-2002-1906
Polycom ViaVideo服务拒绝漏洞CNNVD-ID CNNVD-200212-609
漏洞平台 Hardware CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/21939
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-609
|漏洞详情
PolycomViaVideo2.2和3.0版本的web服务器存在漏洞。远程攻击者可以通过发送不完整HTTP请求和保持连接断开导致服务拒绝(CPU消耗)。
|漏洞EXP
source: http://www.securityfocus.com/bid/5962/info

Polycom ViaVideo devices are prone to a denial of service condition upon receipt of numerous incomplete HTTP requests. This may restrict availability of the device for legitimate users.

The device may need to be restarted to regain normal functionality. 

perl -e 'print "GET " . "/" . " HTTP/1.1rn"' | netcat 10.1.3.54 3603 &

Issue the above command four or more times to cause the denial of service condition.
|参考资料

来源:BID
名称:5962
链接:http://www.securityfocus.com/bid/5962
来源:XF
名称:viavideo-inc-request-dos(10360)
链接:http://www.iss.net/security_center/static/10360.php

相关推荐: LPRNG LPRNG_CERTS.SH Local Insecure Temporary File Creation Vulnerability

LPRNG LPRNG_CERTS.SH Local Insecure Temporary File Creation Vulnerability 漏洞ID 1097391 漏洞类型 Design Error 发布时间 2004-12-23 更新时间 2004…

正文完
 0