ID de Prueba:	1.3.6.1.4.1.25623.1.0.805157
Categoría:	Denial of Service
Título:	Embedthis Appweb Web Server Remote Denial of Service Vulnerability
Resumen:	Embedthis Appweb Web Server is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Embedthis Appweb Web Server is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: A NULL pointer dereference flaw in the parseRange() function in rx.c that is triggered when handling ranger headers in an HTTP request. Vulnerability Impact: Successful exploitation may allow remote attackers to cause the application to crash, creating a denial-of-service condition. Affected Software/OS: Embedthis Appweb version before 4.6.6 and 5.x before 5.2.1 Solution: Update to version 4.6.6 or 5.2.1 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-9708 BugTraq ID: 73407 http://www.securityfocus.com/bid/73407 Bugtraq: 20150328 Advisory: CVE-2014-9708: Appweb Web Server (Google Search) http://www.securityfocus.com/archive/1/535028/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/535028/100/1400/threaded http://seclists.org/fulldisclosure/2015/Mar/158 http://seclists.org/fulldisclosure/2015/Apr/19 http://packetstormsecurity.com/files/131157/Appweb-Web-Server-Denial-Of-Service.html https://supportportal.juniper.net/s/article/2021-07-Security-Bulletin-Junos-OS-Multiple-J-Web-vulnerabilities-resolved?language=en_US http://www.openwall.com/lists/oss-security/2015/03/28/2 http://www.openwall.com/lists/oss-security/2015/04/06/2 http://www.securitytracker.com/id/1037007
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.