Title: Deerfield Website Pro Remote Denial of Service Vulnerability
Severity: MODERATE
Description:
Deerfield WebSite Pro is a commercial webserver for Microsoft Windows operating systems.
A vulnerability has been discovered in Remote Management System (RMS) used by Deerfield Website Pro. It has been reported that a memory leakage condition occurs when malicious requests are made to the affected RMS.
A remote attacker can exploit this issue by sending repeated non-authenticated requests to the RMS service on port 9999. The request must be made for the /dyn directory. This will cause memory leakage and will eventually consume all of system memory, causing the affected server to crash.
This issue was discovered in Website Pro 3.0.37 and it is not yet known whether other versions are also affected.
Affected Products:
- Deerfield Website Pro 3.0.37
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
