Описание
Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service (crash or hang) and obtain the full pathname of the server via a request to a file in the ISAPI directory that is not an executable DLL, which triggers the crash when the DLL load fails, as demonstrated using Isapi\users.txt.
Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service (crash or hang) and obtain the full pathname of the server via a request to a file in the ISAPI directory that is not an executable DLL, which triggers the crash when the DLL load fails, as demonstrated using Isapi\users.txt.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-6938
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46600
- https://www.exploit-db.com/exploits/7109
- http://archives.neohapsis.com/archives/bugtraq/2008-11/0171.html
- http://secunia.com/advisories/32696
- http://www.osvdb.org/49998
- http://www.osvdb.org/49999
- http://www.securityfocus.com/archive/1/498575
- http://www.securityfocus.com/archive/1/498602
- http://www.securityfocus.com/archive/1/498770
- http://www.securityfocus.com/archive/1/498771
- http://www.securityfocus.com/archive/1/498865
- http://www.securityfocus.com/bid/32287
Связанные уязвимости
Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service (crash or hang) and obtain the full pathname of the server via a request to a file in the ISAPI directory that is not an executable DLL, which triggers the crash when the DLL load fails, as demonstrated using Isapi\users.txt.