| tiêu đề | EFS Software Inc Easy Chat Server 3.1 Denial of Service |
|---|
| Mô tả | A vulnerability was found in Easy Chat Server 3.1 and classified as problematic. Affected is the processing of data via the web server's GET method on parameter USERNAME.
The lack of limitation, processing and manipulation of data sent through the GET method leads to denial of service.
The attack can be launched remotely. Additionally, there is an exploit available from the best and most trusted expoits repositories:
https://packetstormsecurity.com/files/176381/Easy-Chat-Server-3.1-Denial-Of-Service.html
https://vulners.com/packetstorm/PACKETSTORM:176381
https://www.securityhome.eu/exploits/exploit.php?eid=1462679296659819b6d2b331.81662182
https://www.exploitalert.com/view-details.html?id=40072
https://cxsecurity.com/issue/WLB-2024010026
https://thecyberpost.com/tools/exploits-cve/easy-chat-server-3-1-denial-of-service/
Server vulnerable: https://drive.google.com/file/d/1ZbfeaWSEKlpvCG1eUtD0vNnfkNz_8PlE/view?usp=sharing
Exploit: https://drive.google.com/file/d/1_kaKPkBnFRpJevtkkn-XkxkDkihg0GOq/view?usp=sharing
Vídeo PoC: https://drive.google.com/file/d/1rG6uTXTg3cTg86qmp9rh2ozQfyOV_Av7/view?usp=sharing
|
|---|
| Nguồn | ⚠️ https://www.youtube.com/watch?v=nGyS2Rp5aEo |
|---|
| Người dùng | fernando.mengali (UID 60856) |
|---|
| Đệ trình | 08/01/2024 16:51 (cách đây 2 những năm) |
|---|
| Kiểm duyệt | 18/01/2024 18:06 (10 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 251480 [EFS Easy Chat Server 3.1 HTTP GET Request tên người dùng Từ chối dịch vụ] |
|---|
| điểm | 17 |
|---|