| MDG Computer
Services Web Server 4D/eCommerce DoS Vulnerability
Type DoS, crashes Daemon Release Date January 15, 2002 Product / Vendor Web Server 4D/eCommerce is a single application that includes a shopping cart, credit card authorization, and order tracking - as well as Web Server 4D 3.5 and WS4D/CGI. Summary MDG Computer Services Web Server 4D/eCommerce is a web server that supports e-commerce enabled sites with a shopping cart application, order tracking etc. Web Server 4D/eCommerce is subject to a denial of service. Submitting a request of unusual length to the host will cause the server to crash. A restart is required in order to gain normal functionality. http://host/AAAAAAAAA...(Ax2500)...AAA Tested Windows 2000 / Web Server 4D/eCommerce 3.5.3 Vulnerable Web Server 4D/eCommerce 3.5.3 (And may be other) Disclaimer http://www.securityoffice.net is not responsible for the misuse or illegal use of any of the information and/or the software listed on this security advisory. Authors Tamer Sahin Zillion |