WinGate < 6.2.0 Compressed Name Pointer DoS

ID 3818.PRM
Type nessus
Reporter Tenable
Modified 2019-03-06T00:00:00


The remote host appears to be running WinGate, a Windows application for managing and securing Internet access. The version of WinGate installed on the remote host contains a flaw involving the processing of DNS requests with compressed name pointers. By sending a specially-crafted DNS request to a UDP port on which WinGate is listening, an unauthenticated remote attacker can cause the affected application to consume 100% of the available CPU, thereby denying service to legitimate users.

                                            Binary data 3818.prm