Nessus Plugin #11063

Plugin Index

Note: This file has been created from a downloaded version of the Nessus Plugins from http://www.nessus.org/. Therefore, the information here can be outdated.

LabView web server DoS

Family:
Denial of Service
Category:
denial
Copyright:
This script is Copyright (C) 2002 Michel Arboi
Summary:
Kills the LabView web server
Version:
$Revision: 1.10 $
Cve_id:
CVE-2002-0748
Bugtraq_id:
4577
Xrefs:
-
Description:
It was possible to kill the web server by
sending a request that ends with two LF characters instead of
the normal sequence CR LF CR LF
(CR = carriage return, LF = line feed).

A cracker may exploit this vulnerability to make this server and
all LabViews applications crash continually.

Workaround : upgrade your LabView software or run the web server with logging
disabled

Risk factor : Low
Generiert am 27.04.2005 um 18:49:54 Uhr.