MDaemon WebConfig HTTP Server URL Overflow DoS
Medium Nessus Plugin ID 10138
SynopsisThe remote web server has a denial of service vulnerability.
DescriptionIt was possible to crash Webconfig (which is used to configure MDaemon) by sending the request :
GET /aaaaa[...]aaa HTTP/1.0
This could allow a remote attacker to crash the web server, preventing the MDaemon server from being configured remotely.
SolutionUpgrade to the latest version of this software.