The HTTP daemon in Ipswitch WhatsUp Gold 8.03 and 8.03 Hotfix 1 allows remote attackers to cause a denial of service (server crash) via a GET request containing an MS-DOS device name, as demonstrated using prn.htm.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Whatsup_gold | Ipswitch | 7.0 (including) | 7.0 (including) |
Whatsup_gold | Ipswitch | 7.03 (including) | 7.03 (including) |
Whatsup_gold | Ipswitch | 7.04 (including) | 7.04 (including) |
Whatsup_gold | Ipswitch | 8.0 (including) | 8.0 (including) |
Whatsup_gold | Ipswitch | 8.01 (including) | 8.01 (including) |
Whatsup_gold | Ipswitch | 8.03 (including) | 8.03 (including) |
Whatsup_gold | Ipswitch | 8.03_hotfix_1 (including) | 8.03_hotfix_1 (including) |