CVE-2003-0290
published 2003-06-16CVE-2003-0290: Memory leak in eServ 2.9x allows remote attackers to cause a denial of service (memory exhaustion) via a large number of connections, whose memory is not freed…
PriorityP422medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
7.85%
93.9th percentile
Memory leak in eServ 2.9x allows remote attackers to cause a denial of service (memory exhaustion) via a large number of connections, whose memory is not freed when the connection is terminated.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| etype | eserv | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
EType EServ 2.98/2.99/3.0 - Resource Exhaustion (Denial of Service) (2)
exploitdb·2003-05-11
CVE-2003-0290 EType EServ 2.98/2.99/3.0 - Resource Exhaustion (Denial of Service) (2)
EType EServ 2.98/2.99/3.0 - Resource Exhaustion (Denial of Service) (2)
---
// source: https://www.securityfocus.com/bid/7552/info
A denial of service vulnerability has been reported for EServ. The vulnerability exists due to the way the server handles connections. Specifically, memory allocated for open connections are not properly freed when a connection no longer exists. This will result in a consumption of all available memory resources.
**It has been reported that EServ version 3.0 previously thought to be invulnerable to this issue is affected by this vulnerability. This version was tested on Windows 2000.
This vulnerability affects EServ 2.92 to 3.0.
/* m00-eServ-fun.c
*
* EServ/2.95-3.00 remote memory-leak exploit
*
* Result: exiting program and close all services
* if you se
Exploit-DB
EType EServ 2.98/2.99/3.0 - Resource Exhaustion (Denial of Service) (1)
exploitdb·2003-05-11
CVE-2003-0290 EType EServ 2.98/2.99/3.0 - Resource Exhaustion (Denial of Service) (1)
EType EServ 2.98/2.99/3.0 - Resource Exhaustion (Denial of Service) (1)
---
source: https://www.securityfocus.com/bid/7552/info
A denial of service vulnerability has been reported for EServ. The vulnerability exists due to the way the server handles connections. Specifically, memory allocated for open connections are not properly freed when a connection no longer exists. This will result in a consumption of all available memory resources.
**It has been reported that EServ version 3.0 previously thought to be invulnerable to this issue is affected by this vulnerability. This version was tested on Windows 2000.
This vulnerability affects EServ 2.92 to 3.0.
#!/usr/bin/perl
#LEGAL NOTICE: Don't test this on networks you don't administer,
#and do not test this tool on networks you don't o
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0064.htmlhttp://marc.info/?l=bugtraq&m=105284630228137&w=2http://marc.info/?l=bugtraq&m=105284631428187&w=2http://www.securityfocus.com/bid/7552https://exchange.xforce.ibmcloud.com/vulnerabilities/11973http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0064.htmlhttp://marc.info/?l=bugtraq&m=105284630228137&w=2http://marc.info/?l=bugtraq&m=105284631428187&w=2http://www.securityfocus.com/bid/7552https://exchange.xforce.ibmcloud.com/vulnerabilities/11973
2003-06-16
Published