Vulnerabilities > CVE-2000-0470 - Unspecified vulnerability in Allegro ROM Pager 2.10

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
allegro
nessus
exploit available
NVD
Published: 2000-06-01
Updated: 2017-10-10

Summary

Allegro RomPager HTTP server allows remote attackers to cause a denial of service via a malformed authentication request.

Vulnerable Configurations

Part Description Count
Application
Allegro
1

Exploit-Db

descriptionAllegro RomPager 2.10 Malformed URL Request DoS Vulnerability. CVE-2000-0470. Dos exploit for hardware platform
idEDB-ID:10237
last seen2016-02-01
modified2000-06-01
published2000-06-01
reporternetsec
sourcehttps://www.exploit-db.com/download/10237/
titleAllegro RomPager 2.10 Malformed URL Request DoS Vulnerability

Nessus

NASL familyDenial of Service
NASL idALLEGRO_DOS.NASL
descriptionThe remote host is running Allegro Software RomPager version 2.10, according to its banner. This version is vulnerable to a denial of service attack that can be exploited by sending a specifically crafted request to crash the affected system.
last seen2020-06-01
modified2020-06-02
plugin id19304
published2005-07-27
reporterThis script is Copyright (C) 2005-2018 Westpoint Limited
sourcehttps://www.tenable.com/plugins/nessus/19304
titleAllegro Software RomPager 2.10 Malformed Authentication Request DoS
code
#
# Sarju Bhagat <[email protected]>
#
# GPLv2


include("compat.inc");

if(description)
{
 script_id(19304);
 script_bugtraq_id(1290);
 script_cve_id("CVE-2000-0470");
 script_version("1.16");
 script_name(english:"Allegro Software RomPager 2.10 Malformed Authentication Request DoS");

 script_set_attribute(attribute:"synopsis", value:
"The remote system is prone to a denial of service attack." );
 script_set_attribute(attribute:"description", value:
"The remote host is running Allegro Software RomPager version 2.10,
according to its banner.  This version is vulnerable to a denial of
service attack that can be exploited by sending a specifically crafted
request to crash the affected system." );
 script_set_attribute(attribute:"see_also", value:"https://seclists.org/vuln-dev/2000/Jun/13" );
 script_set_attribute(attribute:"solution", value:
"Upgrade to v2.20 or later." );
 script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
 script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
 script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
 script_set_attribute(attribute:"exploit_available", value:"true");
 script_set_attribute(attribute:"plugin_publication_date", value: "2005/07/27");
 script_set_attribute(attribute:"vuln_publication_date", value: "2000/06/01");
 script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/12");
 script_set_attribute(attribute:"plugin_type", value: "remote");
 script_end_attributes();


 script_summary(english:"Checks for version of Allegro Software RomPager");
 script_category(ACT_GATHER_INFO);

 script_copyright(english:"This script is Copyright (C) 2005-2020 Westpoint Limited");
 script_family(english:"Denial of Service");
 script_dependencie("http_version.nasl");
 script_require_ports("Services/www", 80);
 exit(0);
}

#
# The script code starts here
#

include("http_func.inc");

port = get_http_port(default:80, embedded:TRUE);

if(get_port_state(port))
{
 banner = get_http_banner(port:port);
 if(!banner || "Allegro" >!< banner )exit(0);

 serv = strstr(banner, "Server");
 if(ereg(pattern:"Allegro-Software-RomPager/2\.([0-9][^0-9]|10)", string:serv))
 {
   security_hole(port);
   exit(0);
 }
}

Seebug

bulletinFamilyexploit
descriptionNo description provided by source.
idSSV:67095
last seen2017-11-19
modified2014-07-01
published2014-07-01
reporterRoot
sourcehttps://www.seebug.org/vuldb/ssvid-67095
titleAllegro RomPager 2.10 Malformed URL Request DoS Vulnerability

References