RemotelyAnywhere 8.0.668 - 'Accept-Charset' Null Pointer Denial of Service
| EKU-ID: 36355 | CVE: CVE-2008-1278;OSVDB-43080 | OSVDB-ID: |
| Author: Luigi Auriemma | Published: 2008-03-10 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 36355 | CVE: CVE-2008-1278;OSVDB-43080 | OSVDB-ID: |
| Author: Luigi Auriemma | Published: 2008-03-10 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/28175/info RemotelyAnywhere is prone to a remote denial-of-service vulnerability because it fails to adequately sanitize user-supplied input. Exploiting this issue will cause the server to copy data to a NULL pointer, which will crash the server, denying access to legitimate users. This issue affects RemotelyAnywhere Server and Workstation 8.0.688; other versions may also be affected. GET / HTTP/1.1 Accept-Charset: boom