TUCoPS :: Web :: Servers :: savant4.htm

Savant Web Server - how to crash
Vulnerability

    Savant

Affected

    Savant 3.0 web server

Description

    'Phiber' found following.  Savant  web server has been written  by
    Michael Lamont.  It is very configurable freeware http deamon  for
    win95/98.  It's current version is 3.0.

    It is known that  you can crash Savant  web server 2.1 and  2.0 by
    sending something like this '%00'(that was discoverd by Ussr), and
    it  was  fixed  in  version  3.0  but something like that is still
    present in 3.0; by sending something like (e.g.)

        http://www.web_server_that_runs_on_SAVANT.com/%%%

    web server can be crashed.

Solution

    Nothing yet.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH