Denial of Service : RealServer Ramgen crash (ramcrash)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.10199

Category: Denial of Service

Title: RealServer Ramgen crash (ramcrash)

Summary: NOSUMMARY

Description: Description:

It was possible to crash the remote Real server
by sending the request :

GET /ramgen/AAAAA[...]AAA HTTP/1.1

An attacker may use this flaw to prevent this
system from serving Real Audio or Video
content to legitimate clients

Solution : Upgrade to a fixed version of RealServer.
Risk factor : High

Cross-Ref: BugTraq ID: 888
Common Vulnerability Exposure (CVE) ID: CVE-2000-0001
http://www.securityfocus.com/bid/888
Bugtraq: 19991222 RealMedia Server 5.0 Crasher (rmscrash.c) (Google Search)
XForce ISS Database: realserver-ramgen-dos

Copyright This script is Copyright (C) 2000 Renaud Deraison

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.10199
Category:	Denial of Service
Title:	RealServer Ramgen crash (ramcrash)
Summary:	NOSUMMARY
Description:	Description: It was possible to crash the remote Real server by sending the request : GET /ramgen/AAAAA[...]AAA HTTP/1.1 An attacker may use this flaw to prevent this system from serving Real Audio or Video content to legitimate clients Solution : Upgrade to a fixed version of RealServer. Risk factor : High
Cross-Ref:	BugTraq ID: 888 Common Vulnerability Exposure (CVE) ID: CVE-2000-0001 http://www.securityfocus.com/bid/888 Bugtraq: 19991222 RealMedia Server 5.0 Crasher (rmscrash.c) (Google Search) XForce ISS Database: realserver-ramgen-dos
Copyright	This script is Copyright (C) 2000 Renaud Deraison