PT-2012-5021 · Dart · Dart Powertcp Webserver For Activex

Catatonic

Published

2012-10-04

Updated

2015-12-04

CVE-2012-3819

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Dart PowerTCP WebServer for ActiveX versions 1.9 and earlier

Description The issue is related to a stack consumption vulnerability in the dartwebserver.dll, which can be exploited by remote attackers to cause a denial of service. This is achieved by sending a long request, resulting in a daemon crash.

Recommendations For versions 1.9 and earlier, consider updating to a newer version to mitigate the risk of a denial of service attack. As a temporary workaround, restrict access to the dartwebserver.dll to minimize the risk of exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2012-3819

Affected Products

Dart Powertcp Webserver For Activex

PT-2012-5021 · Dart · Dart Powertcp Webserver For Activex

CVE-2012-3819

Weakness Enumeration

Related Identifiers

Affected Products

References · 4