Bugtraq: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability

From: tecklord () securitylab ru
Date: Sat, 22 Nov 2008 15:29:46 -0700

Vulnerability is confirmed on Pi3Web 2.03 PL 2. If an attacker sends a request to one of the files in the isapi 
directory, the dialog box appears on the host system. Until the OK button on the host system is pressed, Pi3Web does 
not serve any requests. There is no application crash, but technically, it`s a DoS.

By Date By Thread

Current thread:

Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability zimpel (Nov 22)
- <Possible follow-ups>
- Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability tecklord (Nov 24)
- Re: Re: Wrong report: BID 32287, Pi3Web ISAPI DoS vulnerability zimpel (Nov 24)