94 matches found
Memory leak DoS in EServ
On every connection few Kb of memory are reserver and never free'd back...
Memory-leak vulnerability in EServ/3.00
/ m00 security advistory 005 Memory-leak vulnerability in EServ/3.00 www.m00security.org / --------------------------------- Product: eServ Version: 2.95-3.00 OffSite: www.eserv.ru --------------------------------- Overview: eServ includes Mail, News, Web, FTP and Proxy Servers. It's the most...
CVE-2003-0290
Memory leak in eServ 2.9x allows remote attackers to cause a denial of service memory exhaustion via a large number of connections, whose memory is not freed when the connection is terminated...
Eserv Web Server /? Request Forced Directory Listing
The version of EServ running on the remote host is vulnerable to an information disclosure attack. Sending a specially crafted GET request returns a directory listing, even when an index file is present. A remote attacker could use this information to mount further attacks against the system. C...
EServ/2.99: problems
-----BEGIN PGP SIGNED MESSAGE----- Damage Hacking Group security advisory www.dhgroup.org Product: EServ/2.95-99 Authors: Etype Co. www.eserv.ru Vulnerability: multiple bugs Overview----------------------------------------------------- Imho Eserv is the best russian server. It includes http, pop,...
EServ 2.9x - Directory Indexing
EServ 2.9x - Directory Indexing source: https://www.securityfocus.com/bid/7669/info EServ does not sufficiently prevent web users from being able to view directory indexes. This may result in disclosure of sensitive information. GET /? HTTP/1.1...
CVE-2003-0290
Memory leak in eServ 2.9x allows remote attackers to cause a denial of service memory exhaustion via a large number of connections, whose memory is not freed when the connection is terminated...
CVE-2003-0290
The CVE-2003-0290 issue affects eServ HTTP (eServ 2.9x). A memory leak in the HTTP connection handling allows remote attackers to cause a denial of service through a large number of connections, where memory is not freed when the connection ends. This vulnerability results in memory exhaustion an...
[NT] eServ Memory Leak Enables Denial of Service Attacks
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion In the US? Contact Beyond Security at our new California office housewarming rates on automated network vulnerability scanning. We also...
eserv-mem.txt
eServ Memory Leak Enables Denial of Service Attacks I. Product Description eServ is a hybrid Web server HTTP, FTP server, mail server POP3, SMTP, Finger, news server NNTP, and proxy server. It provides all these services in a single package, so that administrators are not required to run multiple...
Eserv Non-Terminated Connection Saturation DoS
The remote host is running Eserv HTTP/SMTP/FTP server. According to its version number, there is a memory leak in this software which allows any attacker to consume all the available memory on this host by making repeated requests to this service. C Tenable Network Security, Inc. From: "Matthew...
EType EServ 2.982.993.0 - Resource Exhaustion (Denial of Service) (2)
EType EServ 2.982.993.0 - Resource Exhaustion Denial of Service 2 // source: https://www.securityfocus.com/bid/7552/info A denial of service vulnerability has been reported for EServ. The vulnerability exists due to the way the server handles connections. Specifically, memory allocated for open...
EType EServ 2.982.993.0 - Resource Exhaustion (Denial of Service) (1)
EType EServ 2.982.993.0 - Resource Exhaustion Denial of Service 1 source: https://www.securityfocus.com/bid/7552/info A denial of service vulnerability has been reported for EServ. The vulnerability exists due to the way the server handles connections. Specifically, memory allocated for open...
EType EServ 2.98/2.99/3.0 - Resource Exhaustion (Denial of Service) (1)
source: https://www.securityfocus.com/bid/7552/info A denial of service vulnerability has been reported for EServ. The vulnerability exists due to the way the server handles connections. Specifically, memory allocated for open connections are not properly freed when a connection no longer exists...
EType EServ 2.98/2.99/3.0 - Resource Exhaustion (Denial of Service) (2)
// source: https://www.securityfocus.com/bid/7552/info A denial of service vulnerability has been reported for EServ. The vulnerability exists due to the way the server handles connections. Specifically, memory allocated for open connections are not properly freed when a connection no longer...
EServ/2.97 remote DoS
Damage Hacking Group security advisory www.dhgroup.org Product: EServ/2.97 Authors: Etype Co. www.eserv.ru Vulnerable versions: up to v.2.97, may be 2.98 Not vulnerable versions: v.2.99 Vulnerability: remote DoS Overview-------------------------------------------------------------- From EServ's...
EType EServ 1.9x - NNTP Remote Denial of Service
EType EServ 1.9x - NNTP Remote Denial of Service source: https://www.securityfocus.com/bid/6522/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When ...
EType EServ 2.9x - SMTP Remote Denial of Service
EType EServ 2.9x - SMTP Remote Denial of Service source: https://www.securityfocus.com/bid/6521/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When ...
EType EServ 2.9x - FTP Remote Denial of Service
EType EServ 2.9x - FTP Remote Denial of Service source: https://www.securityfocus.com/bid/6519/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When a...
EType EServ 2.9x - POP3 Remote Denial of Service
EType EServ 2.9x - POP3 Remote Denial of Service source: https://www.securityfocus.com/bid/6520/info EServ is a proxy software package distributed by EType. It is available for Microsoft Windows operating systems. It has been reported that a problem in EServ may cause the software to crash. When ...