Vulnerabilities > CVE-2004-1699 - Denial Of Service vulnerability in Pinnacle Systems Showcenter 1.51

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

pinnacle-systems

nessus

exploit available

NVD

Published: 2004-09-21

Updated: 2017-07-11

Summary

SettingsBase.php in Pinnacle ShowCenter 1.51 allows remote attackers to cause a denial of service (web interface errors) via an invalid Skin parameter.

Vulnerable Configurations

Part	Description	Count
Application	Pinnacle_Systems Pinnacle Systems Showcenter 1.51	1

Exploit-Db

description	Pinnacle ShowCenter 1.51 Web Interface Skin Denial Of Service Vulnerability. CVE-2004-1699. Dos exploit for php platform
id	EDB-ID:24621
last seen	2016-02-02
modified	2004-09-21
published	2004-09-21
reporter	Marc Ruef
source	https://www.exploit-db.com/download/24621/
title	Pinnacle ShowCenter 1.51 - Web Interface Skin Denial of Service Vulnerability

Nessus

NASL family	CGI abuses
NASL id	PINNACLE_SC_SKIN_DOS.NASL
description	The remote host runs the Pinnacle ShowCenter web-based interface. The remote version of this software is vulnerable to a remote denial of service due to a lack of sanity checks on skin parameter. With a specially crafted URL, an attacker can deny service of the ShowCenter web-based interface.
last seen	2020-06-01
modified	2020-06-02
plugin id	14824
published	2004-09-27
reporter	This script is Copyright (C) 2004-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/14824
title	Pinnacle ShowCenter Skin DoS
code	# # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(14824); script_version("1.15"); script_cve_id("CVE-2004-1699"); script_bugtraq_id(11232); script_name(english:"Pinnacle ShowCenter Skin DoS"); script_set_attribute(attribute:"synopsis", value: "A remote application is vulnerable to a denial of service." ); script_set_attribute(attribute:"description", value: "The remote host runs the Pinnacle ShowCenter web-based interface. The remote version of this software is vulnerable to a remote denial of service due to a lack of sanity checks on skin parameter. With a specially crafted URL, an attacker can deny service of the ShowCenter web-based interface." ); script_set_attribute(attribute:"solution", value: "Upgrade to the newest version of this software." ); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"); script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No exploit is required"); script_set_attribute(attribute:"exploit_available", value:"false"); script_set_attribute(attribute:"plugin_publication_date", value: "2004/09/27"); script_set_attribute(attribute:"vuln_publication_date", value: "2004/09/21"); script_set_attribute(attribute:"plugin_modification_date", value:"2020/06/12"); script_set_attribute(attribute:"plugin_type", value:"remote"); script_end_attributes(); script_summary(english:"Checks skin DoS in Pinnacle ShowCenter"); script_category(ACT_DENIAL); script_copyright(english:"This script is Copyright (C) 2004-2020 Tenable Network Security, Inc."); script_family(english:"CGI abuses"); script_require_ports("Services/www", 8000); script_dependencies("http_version.nasl"); exit(0); } include("http_func.inc"); include("http_keepalive.inc"); port = get_http_port(default:8000, embedded:TRUE); if ( ! port ) exit(0); if(get_port_state(port)) { soc = http_open_socket(port); if(soc) { buf = http_get(item:"/ShowCenter/SettingsBase.php?Skin=ATKnessus", port:port); r = http_keepalive_send_recv(port:port, data:buf, bodyonly:1); if( r == NULL )exit(0); #try to detect errors if(egrep(pattern:"Fatal error.loaduserprofile.Failed opening required", string:r)) { security_warning(port); } http_close_socket(soc); } } exit(0);

Summary

Vulnerable Configurations

Exploit-Db

Nessus

References