PT-2026-2427 · Unknown · Sysax Multi Server
Luis Martinez
·
Published
2026-01-13
·
Updated
2026-01-14
·
CVE-2023-54337
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Sysax Multi Server version 6.95
Description
Sysax Multi Server version 6.95 contains a denial of service condition in the administrative password field. An attacker can overwrite the password field with 800 bytes of repeated characters, causing the application to crash and disrupting server functionality. The vulnerable field is the administrative password field.
Recommendations
Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, limit the length of the administrative password field to prevent the input of 800 repeated characters.
Exploit
Fix
DoS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sysax Multi Server