Re: Denial of Service vulnerability in several Lexmark HTTP servers

From: Eric Sesterhenn / snakebyte (snakebyte_at_gmx.de)
Date: 07/21/04

  • Next message: CoolICE: "Bug@FlashFTPd"
    To: pkr@csis.dk
    Date: Wed, 21 Jul 2004 02:25:46 +0200
    
    

    On Tue, 2004-07-20 at 22:46, Peter Kruse wrote:
    > Denial of Service vulnerability in several Lexmark HTTP servers.
    >
    > Several Lexmark network printers is shipped with a build-in HTTP server for
    > administrative tasks. The webserver software is vulnerable to a Denial of
    > Service attack that will force the webserver to restart and/or stop taking
    > requests.

    This issue is known for quite some time now. Two months ago I released a
    PoC on my page.

     Greetings Eric

    -- 
     www.cobra-basket.de -- just my stuff
    

  • Next message: CoolICE: "Bug@FlashFTPd"