Sambar Server Multiple CGI Remote Overflow

medium Nessus Plugin ID 11131

Synopsis

The remote web server is vulnerable to a denial of service.

Description

It is possible to kill the Sambar web server 'server.exe' by sending it a long request like:
/cgi-win/testcgi.exe?XXXX...X /cgi-win/cgitest.exe?XXXX...X /cgi-win/Pbcgi.exe?XXXXX...X (or maybe in /cgi-bin/)

An attacker may use this flaw to cause the server to crash continuously.

Solution

Upgrade the server to Sambar 51p or delete those CGI.

Plugin Details

Severity: Medium

ID: 11131

File Name: sambar_DoS.nasl

Version: 1.26

Type: remote

Family: CGI abuses

Published: 9/21/2002

Updated: 1/19/2021

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Required KB Items: Settings/ParanoidReport, www/sambar

Exploit Ease: No exploit is required

Vulnerability Publication Date: 1/16/2002

Reference Information

CVE: CVE-2002-0128

BID: 3885

Detections

Analytics