Michael Lamont Savant Web Server 2.0 - NULL Character Denial of Service
| EKU-ID: 25286 | CVE: CVE-2000-0014;OSVDB-1177 | OSVDB-ID: |
| Author: Ussr Labs | Published: 1999-12-28 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 25286 | CVE: CVE-2000-0014;OSVDB-1177 | OSVDB-ID: |
| Author: Ussr Labs | Published: 1999-12-28 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/897/info The Savant Webserver cannot properly handle null characters in a GET request. If it encounters one, it will crash. The failure is logged in <savant_path>\Logs\general.txt http ://target/%00/