POC详情: e038ddc79297c8f8c9ed83ae69b94e2ff299ef23

来源
https://github.com/alt3kx/CVE-2002-0348
关联漏洞
标题: Sun Cobalt RaQ Service.CGI HTTP Server拒绝服务漏洞 (CVE-2002-0348)
描述:Sun Cobalt RaQ是ISPs使用的一种服务方软件。 当远程用户针对service.cgi提交超长URL请求时,导致HTTP Server崩溃: http://10.0.0.1:81/cgi-bin/.cobalt/alert/service.cgi?service=/AAAAAAAAA...(Ax100000)...AAA 管理员必须重启HTTP服务才能恢复正常。
描述
service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service
介绍
# CVE-2002-0348
service.cgi in Cobalt RAQ 4 allows remote attackers to cause a denial of service

Packetstorm publication at https://packetstormsecurity.com/files/25837/Colbalt-RAQ-v4.txt.html <br>
SecurityFocus publication at https://www.securityfocus.com/bid/4209 <br>

# Author
Alex Hernandez aka <em><a href="https://twitter.com/_alt3kx_" rel="nofollow">(@\_alt3kx\_)</a></em>

# Vendor Reponse: 

The vendor was notified

Posted List^s Security cobalt:<br>
cobalt-security@list.cobalt.com &<br>
jlovell@sun.com<br>
http://www.cobalt.com<br>

# Patch Temporary:
Delete files cgi^s from the system, or disable its possible execution.<br>
文件快照

 [4.0K]  /data/pocs/e038ddc79297c8f8c9ed83ae69b94e2ff299ef23
├── [1.3K]  Cobalt4_DoS.pl
├── [2.7K]  CVE-2002-0348.txt
├── [ 34K]  LICENSE
└── [ 641]  README.md

0 directories, 4 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。