5 matches found
Moxa EDR-810 Web Server strcmp Denial of Service (CVE-2017-14436)
An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in denial of service. An attacker can send a GET request to /MOXA\CFG2.ini without a cookie header...
CVE-2017-14436
CVE-2017-14436 affects Moxa EDR-810, firmware version 4.1 build 17030317. A denial of service can be triggered by a crafted HTTP GET request to /MOXA_CFG2.ini without a cookie header, causing a null pointer dereference in the web server. Exploitation is network-based and requires no authenticatio...
CVE-2017-14436
An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in denial of service. An attacker can send a GET request to "/MOXA\CFG2.ini" without a cookie head...
Moxa EDR-810 Web Server strcmp Multiple Denial of Service Vulnerabilities(CVE-2017-14435 - CVE-2017-14437)
Summary An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in denial of service. An attacker can send a GET request to "/MOXALOG.ini, /MOXACFG.ini, o...
Moxa EDR-810 Web Server strcmp Multiple Denial of Service Vulnerabilities
Summary An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in denial of service. An attacker can send a GET request to “/MOXALOG.ini, /MOXACFG.ini, o...