CVE-2017-16249

CVE-2017-16249

The Debut embedded http server 1.20 contains a remotely exploitable denial of service where a single malformed HTTP request can cause the server to hang until eventually replying with an HTTP 500 error. While the server is hung, print jobs over the network are blocked and the web interface is inaccessible. An attacker can continuously send this malformed request to keep the device inaccessible to legitimate traffic. NOTE: this might overlap CVE-2017-12568.

Source: CVE-2017-16249

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다