iMatix's Xitami Web Server Allows Remote Users to Crash the Web Server - SecurityTracker

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (Web Server/CGI) > Xitami Web Server

Vendors: iMatix

iMatix's Xitami Web Server Allows Remote Users to Crash the Web Server

SecurityTracker Alert ID: 1001348

SecurityTracker URL: http://securitytracker.com/id/1001348

CVE Reference: GENERIC-MAP-NOMATCH (Links to External Site)

Date: Apr 18 2001

Impact: Denial of service via network

Exploit Included: Yes

Version(s): 2.5d4, 2.4d7; possibly earlier versions

Description: It is reported that iMatix's Xitami web server contains a vulnerability that allows remote users to crash the web server.

If a remote user requests a DOS device via an HTTP request, the server may crash. An example URL is: http://[targethost]/aux

The author of the report notes that some computers crash after this request but others do not and instead provide no indication of error but may not work properly. If the server crashes (for Windows98/Me), the host must be rebooted.

The vendor has reportedly been notified.

Impact: A remote user can cause the host to crash.

Solution: No solution was available at the time of this entry.

Vendor URL: www.imatix.com/html/xitami/index.htm (Links to External Site)

Cause: Resource error

Underlying OS: Windows (Me), Windows (NT), Windows (95), Windows (98)

Message History: This archive entry has one or more follow-up message(s) listed below.

(Vendor Provides Initial Response) Re: iMatix's Xitami Web Server Allows Remote Users to Crash the Web Server (Ewen McNeill <ewen@IMATIX.COM>)
The vendor confirms the vulnerability and makes an interim recommendation.

Source Message Contents

Date: Tue, 17 Apr 2001 09:41:03 -0500
Subject: Advisory for Xitami 2.4d7, 2.5d4


--Hushpart_boundary_mhnySXMNDjcAphKledjsMwVgEJcRsOTq
Content-type: text/plain

 [ Advisory for Xitami 2.4d7, 2.5d4                  ]
 [ Xitami is made by Imatix.                         ]
 [ Site: http://xitami.com                           ]
 [ by nemesystm of the DHC                           ]
 [ (http://dhcorp.cjb.net - neme-dhc@hushmail.com)   ]
 [ ADV-0105                                          ]

/-|=[explanation]=|-\
Xitami is a webserver. It has a denial of service.

/-|=[who is vulnerable]=|-\
Anyone running Xitami 2.5d4, 2.4d7 and presumably
earlier on a Windows 98/Millennium operating system.

/-|=[testing it]=|-\
To test this vulnerability, try the following.
send a request like this one:
www.server.com/aux
some computers crash after this request.
Others seem to continue working, but when trying to
browse the website or logging into the FTP server it
fails. Sometimes a refresh of the main page even
works, but no other links work.
Trying to close the server by hitting the terminate
button fails as well, meaning you'll have to
Ctrl+Alt+Del it.

/-|=[notes]=|-\
Because some computers do not crash completely or give
any error messages this is dangerous as things seem
to be normal at first glance.

/-|=[fix]=|-\
Not known at the moment, vendor was contacted and said
they would look into it. Over a week has gone by and nothing.
Free, encrypted, secure Web-based email at www.hushmail.com
--Hushpart_boundary_mhnySXMNDjcAphKledjsMwVgEJcRsOTq--

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2013, SecurityGlobal.net LLC