|
Family: CGI abuses --> Category: mixed
UltraSeek 3.1.x Remote DoS Vulnerability Scan
Vulnerability Scan Summary Hangs the remote UltraSeek server for some time
Detailed Explanation for this Vulnerability Test
It is possible to make the remote UltraSeek server hang temporarily
by requesting :
/index.html?&col=&ht=0&qs=&qc=&pw=100%25&ws=0&nh=10&lk=1&rf=0&si=1&si=1&ql=../../../index
A possible hacker may use this flaw to prevent this site from responding
to valid client requests.
Solution : Upgrade to UltraSeek 4.x
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|