Provided by Aanval (Snort & Syslog Intrusion Detection and Correlation Engine) www.aanval.com
--
| GEN:SID | 1:306 |
| Message | EXPLOIT VQServer admin |
| Summary | This event is generated when an attempt is made to exploit a vulnerability in VQ Server to cause a Denial of Service (DoS). |
| Impact | Serious. A Denial of Service on the target server is possible. |
| Detailed Information | vqServer is a personal web server that runs on Microsoft Windows, Linux and Solaris. Version 1.4.49 suffers from a DoS condition if a long GET request is issued to the server. Affected Systems: vqServer 1.4.49 |
| Affected Systems | |
| Attack Scenarios | Exploit scripts are available |
| Ease of Attack | Simple. Exploits are available. |
| Corrective Action | Upgrade to the latest non-affected version of the software. |
| Additional References | Bugtraq: http://www.securityfocus.com/bid/1610 CVE: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2000-0766 vqSoft: http://www.vqsoft.com/ |
| Rule References | bugtraq: 1610 cve: 2000-0766 nessus: 10354 url: www.vqsoft.com/vq/server/docs/other/control.html |
--
DID:713128
--
http://www.aanval.com/