1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web attack: Hasbani Web Server

Web attack: Hasbani Web Server

Severity: Medium

This attack could pose a moderate security threat. It does not require immediate action.

Description

Hasbani Server is used to manage Ethernet routers and ADSL modems.

Additional Information

Hasbani Server is used to manage Ethernet routers and ADSL modems.

Hasbani Web Server is affected by a remote denial of service vulnerability. This issue arises because the application fails to handle exceptional conditions in a proper manner.

The vulnerability presents itself when the server handles a malformed HTTP GET request containing an excessive amount of '.' and ':' characters. This causes the server to enter an infinite loop and eventually crash.

A successful attack can allow an attacker to terminate the server and deny service to legitimate users.

Affected

  • Hasbani Web Server Hasbani Web Server 2.0

Response

Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube