-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZBServer Pro DoS Vulnerability Type: DoS, crashes Daemon Release Date: December 15, 2002 Product / Vendor: ZBServer Pro Edition (for Windows 95 and NT) offers all the functionality of an integrated Web, Gopher, FTP and Chat server . http://www.zbserver.com Summary: Server crashes after sending very long URL a few times. http://host/AAAAAAAAA...(Ax2500)...AAA Tested: Windows 2000 / ZBServer Pro 1.50-r13 Vulnerable: Web Server 4D/ZBServer Pro 1.50-r13 (And may be other) Disclaimer: http://www.securityoffice.net is not responsible for the misuse or illegal use of any of the information and/or the software listed on this security advisory. Author: Tamer Sahin ts@securityoffice.net http://www.securityoffice.net Tamer Sahin http://www.securityoffice.net PGP Key ID: 0x2B5EDCB0 Fingerprint: B96A 5DFC E0D9 D615 8D28 7A1B BB8B A453 2B5E DCB0 -----BEGIN PGP SIGNATURE----- Version: PGP 7.1 iQA/AwUBPEOXlLuLpFMrXtywEQJM9ACgwtLPTTeKGh6JVuakIalEzsxU02QAn0wq a4oTxL5QyF5xokDoeqUs0aGV =B598 -----END PGP SIGNATURE-----
