Vulnerabilities > CVE-1999-0970 - Denial of Service vulnerability in OmniHTTPD visiadmin.exe
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The OmniHTTPD visadmin.exe program allows a remote attacker to conduct a denial of service via a malformed URL which causes a large number of temporary files to be created.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Omnicron OmniHTTPD 1.1/2.0 Alpha 1 visiadmin.exe Denial of Service Vulnerability. CVE-1999-0970. Dos exploit for windows platform |
id | EDB-ID:20304 |
last seen | 2016-02-02 |
modified | 1999-06-05 |
published | 1999-06-05 |
reporter | Valentin Perelogin |
source | https://www.exploit-db.com/download/20304/ |
title | Omnicron OmniHTTPD 1.1/2.0 Alpha 1 visiadmin.exe Denial of Service Vulnerability |
Nessus
NASL family | CGI abuses |
NASL id | VISADMIN.NASL |
description | It is possible to fill the hard disk of a server running OmniHTTPd by issuing the request : http://omni.server/cgi-bin/visadmin.exe?user=guest This allows an attacker to crash your web server. This script checks for the presence of the faulty CGI, but does not execute it. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 10295 |
published | 1999-06-22 |
reporter | This script is Copyright (C) 1999-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/10295 |
title | OmniHTTPd visadmin.exe Malformed URL DoS |
code |
|