Published: 01/10/2008 Updated: 29/09/2017

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 785

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

The web interface in Samsung DVR SHR2040 allows remote malicious users to cause a denial of service (crash) via a malformed HTTP request, related to the filter for configuration properties and "/x" characters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
samsung dvr shr2040 b3.03e-k1.53-v2.19_0705281908

#!/usr/bin/perl -w # # Samsung DVR SHR2040 HTTPD Remote Denial of Service DoS PoC # # The vulnerability is caused due to an unspecified error in the cgis # files filter used for configure propierties This can be exploited by # sending a specially crafted HTTP request (NO necessary authentication), # which will cause the HTTP service on the system ...

CWE-20 http://www.sybsecurity.com/advisors/SYBSEC-ADV16-Samsung_DVR_SHR_2040_HTTPD_Remote_Denial_Of_Service http://www.securityfocus.com/bid/31047 http://secunia.com/advisories/31752 http://securityreason.com/securityalert/4329 https://exchange.xforce.ibmcloud.com/vulnerabilities/44995 https://www.exploit-db.com/exploits/6394 https://nvd.nist.gov https://www.exploit-db.com/exploits/6394/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-4380

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect