|
Family: Denial of Service --> Category: kill_host
Annex DoS Vulnerability Scan
Vulnerability Scan Summary Crashes an Annex terminal
Detailed Explanation for this Vulnerability Test
It was possible to crash
the remote Annex terminal by connecting to
the HTTP port, and requesting the '/ping' CGI
script with an argument that is too long. For
example:
http://www.YOURSERVER.com/ping?query=AAAAA(...)AAAAA
A possible hacker may use this flaw to crash this
host, thus preventing your network from
working properly.
Solution : Remove the '/ping' CGI script from your
web server.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|