Signature Detail

Short Name	HTTP:MISC:WEBWEAVER-DDP
Severity	Medium
Recommended	No
Category	HTTP
Keywords	webweaver http dos DDP
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: WebWeaver DOS Device Path Request

This signature detects attempts to exploit a known vulnerability in WebWeaver HTTP Server running on Windows 95/98. BRS WebWeaver 1.01 and 1.03 are vulnerable. Attackers can send a maliciously crafted URL containing DOS device names to the Web server to render it unusable.

Extended Description

When successfully exploited, the entire host operating system crashes, causing a denial of service condition.

References

URL: http://securityvulns.com/docs3989.html
URL: http://www.securityspace.com/smysecure/catid.html?id=11584
URL: http://www.net-security.org/vuln.php?id=3050

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: WebWeaver DOS Device Path Request

Extended Description

References