Vulnerabilities > CVE-2017-15662 - Improperly Implemented Security Check for Standard vulnerability in Flexense VX Search 10.1.12
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
In Flexense VX Search Enterprise v10.1.12, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9123.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | VX Search Enterprise 10.1.12 - Denial of Service. CVE-2017-15662. Dos exploit for Windows platform |
| file | exploits/windows/dos/43451.py |
| id | EDB-ID:43451 |
| last seen | 2018-01-24 |
| modified | 2018-01-08 |
| platform | windows |
| port | |
| published | 2018-01-08 |
| reporter | Exploit-DB |
| source | https://www.exploit-db.com/download/43451/ |
| title | VX Search Enterprise 10.1.12 - Denial of Service |
| type | dos |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/145764/vxsearchent10112-dos.txt |
| id | PACKETSTORM:145764 |
| last seen | 2018-01-10 |
| published | 2018-01-09 |
| reporter | Ahmad Mahfouz |
| source | https://packetstormsecurity.com/files/145764/VX-Search-Enterprise-10.1.12-Denial-Of-Service.html |
| title | VX Search Enterprise 10.1.12 Denial Of Service |