The SSL web administration service in NetWin SmsGate 1.1n and earlier allows remote attackers to cause a denial of service (hang) via (1) a large integer in the Content-Length HTTP header; (2) an invalid value in the Content-Length HTTP header, as demonstrated by a negative integer; or (3) a missing Content-Length HTTP header.
References
Link | Resource |
---|---|
http://aluigi.altervista.org/adv/smsgheit-adv.txt | Exploit |
http://secunia.com/advisories/29149 | Vendor Advisory |
http://www.securityfocus.com/bid/28048 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:13:56
Updated: 2022-10-03T16:13:56
Reserved: 2022-10-03T00:00:00
Link: CVE-2008-5421
JSON object: View
NVD Information
Status : Analyzed
Published: 2008-12-11T15:30:00.440
Modified: 2008-12-12T05:00:00.000
Link: CVE-2008-5421
JSON object: View
Redhat Information
No data.
CWE