Vulnerabilities > CVE-2014-5329 - Unspecified vulnerability in Tripodworks products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

tripodworks

exploit available

NVD

Published: 2023-09-08

Updated: 2023-09-14

Summary

GIGAPOD file servers (Appliance model and Software model) provide two web interfaces, 80/tcp and 443/tcp for user operation, and 8001/tcp for administrative operation. 8001/tcp is served by a version of Apache HTTP server containing a flaw in handling HTTP requests (CVE-2011-3192), which may lead to a denial-of-service (DoS) condition.

Vulnerable Configurations

Part	Description	Count
OS	Tripodworks Tripodworks Gigapod Officehard Firmware * Tripodworks Gigapod 2010 Firmware * Tripodworks Gigapod 3 Firmware *	3
Hardware	Tripodworks Tripodworks Gigapod Officehard - Tripodworks Gigapod 2010 - Tripodworks Gigapod 3 -	3

Exploit-Db

description	Apache httpd Remote Denial of Service (memory exhaustion). CVE-2011-3192,CVE-2014-5329. Dos exploits for multiple platform
file	exploits/multiple/dos/17696.pl
id	EDB-ID:17696
last seen	2016-02-02
modified	2011-08-19
platform	multiple
port
published	2011-08-19
reporter	kingcope
source	https://www.exploit-db.com/download/17696/
title	Apache httpd Remote Denial of Service memory exhaustion
type	dos

description	Apache HTTP Server Denial of Service. CVE-2011-3192,CVE-2014-5329. Dos exploit for linux platform
id	EDB-ID:18221
last seen	2016-02-02
modified	2011-12-09
published	2011-12-09
reporter	Ramon de C Valle
source	https://www.exploit-db.com/download/18221/
title	Apache HTTP Server Denial of Service

References

https://jvn.jp/en/jp/JVN23809730/