<<< Date Index >>>     <<< Thread Index >>>

DoS in Plug and Play Web Server Proxy Server



DoS in Plug and Play Web Server Proxy Server
==============================

Plug & Play server is a HTTP/FTP/NEWS/MAIL/TELNET/DNS/DHCP/HTTP-PROXY
server, running on Windows platforms.


Version: 1.0002c 
--------

Vendor: www.pandpsoft.com
-------

Vulnerability: 
--------------
Sending the following request "GET /asdf.? HTTP/1.0" to TCP Port 8080 will 
stop the Proxy Service, showing a "Runtime Error 12001 - Parameter 1 of the
method used is invalid or not appropriate" on the console.

The Proxy Service has to be restarted.

Misc:
------

There are still several other (older) vulns in Plug & Play Webserver. It
seems
that the vendor does not update the software anymore.

Credit:
-------

Oliver.karow[AT]gmx.de
www.oliverkarow.de/research.htm

-- 
NEU FÜR ALLE - GMX MediaCenter - für Fotos, Musik, Dateien...
Fotoalbum, File Sharing, MMS, Multimedia-Gruß, GMX FotoService

Jetzt kostenlos anmelden unter http://www.gmx.net

+++ GMX - die erste Adresse für Mail, Message, More! +++