Vulnerabilities > CVE-2017-15664 - Improperly Implemented Security Check for Standard vulnerability in Flexense Syncbreeze 10.1.16
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
In Flexense Sync Breeze Enterprise v10.1.16, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9121.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Exploit-Db
| description | Sync Breeze Enterprise 10.1.16 - Denial of Service. CVE-2017-15664. Dos exploit for Windows platform |
| file | exploits/windows/dos/43453.py |
| id | EDB-ID:43453 |
| last seen | 2018-01-24 |
| modified | 2018-01-08 |
| platform | windows |
| port | |
| published | 2018-01-08 |
| reporter | Exploit-DB |
| source | https://www.exploit-db.com/download/43453/ |
| title | Sync Breeze Enterprise 10.1.16 - Denial of Service |
| type | dos |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/145760/syncbreezeent10116-dos.txt |
| id | PACKETSTORM:145760 |
| last seen | 2018-01-10 |
| published | 2018-01-09 |
| reporter | Ahmad Mahfouz |
| source | https://packetstormsecurity.com/files/145760/Sync-Breeze-Enterprise-10.1.16-Denial-Of-Service.html |
| title | Sync Breeze Enterprise 10.1.16 Denial Of Service |