1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: Xerver Multiple Request DoS

Attack: Xerver Multiple Request DoS

Severity: Medium

This attack could pose a moderate security threat. It does not require immediate action.

Description

This signature detects attempts to exploit a denial-of-service vulnerability in Xerver.

Additional Information

Xerver is a freely available Web server, written in Java. It will run on any operating system with Java installed, including Microsoft Windows, Unix/Linux variants, MacOS, etc.

An issue has been reported in the way Xerver handles certain types of requests.

A denial-of-service condition has been discovered in Xerver. It has been reported that sending an excessive number of requests for 'C:' to port 32123 will cause the Web server to crash, denying service to legitimate users. This appears to be the case even on non-Windows based operating systems running the vulnerable software.

The Web server will need to be restarted to regain normal functionality.

This issue was reported for v2.10 of Xerver. Earlier versions may also be affected.

Affected

  • Xerver Xerver 2.10

Response

This issue has been addressed in Xerver 2.20.
Xerver 2.10:
Xerver Upgrade Xerver 2.20

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube