Vulnerabilities > CVE-2016-9332 - Resource Management Errors vulnerability in Moxa Softcms

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

moxa

CWE-399

exploit available

NVD

Published: 2017-02-13

Updated: 2017-09-03

Summary

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. Moxa SoftCMS Webserver does not properly validate input. An attacker could provide unexpected values and cause the program to crash or excessive consumption of resources could result in a denial-of-service condition.

Vulnerable Configurations

Part	Description	Count
Application	Moxa Moxa Softcms 1.2 Moxa Softcms 1.3 Moxa Softcms 1.4 Moxa Softcms 1.5	4

Common Weakness Enumeration (CWE)

CWE-399 - Resource Management Errors

Exploit-Db

description	Moxa SoftCMS 1.5 - Denial of Service (PoC). CVE-2016-9332. Dos exploit for Windows platform
file	exploits/windows/dos/40779.py
id	EDB-ID:40779
last seen	2016-11-18
modified	2016-11-18
platform	windows
port
published	2016-11-18
reporter	Exploit-DB
source	https://www.exploit-db.com/download/40779/
title	Moxa SoftCMS 1.5 - Denial of Service (PoC)
type	dos

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References