cve/2018/CVE-2018-8065.md

CVE-2018-8065

Description

An issue was discovered in the web server in Flexense SyncBreeze Enterprise 10.6.24. There is a user mode write access violation on the syncbrs.exe memory region that can be triggered by rapidly sending a variety of HTTP requests with long HTTP header values or long URIs.

POC

Reference

• http://packetstormsecurity.com/files/172676/Flexense-HTTP-Server-10.6.24-Buffer-Overflow-Denial-Of-Service.html
• http://packetstormsecurity.com/files/172676/Flexense-HTTP-Server-10.6.24-Buffer-Overflow-Denial-Of-Service.html

Github

• https://github.com/0xT11/CVE-POC
• https://github.com/EgeBalci/CVE-2018-8065
• https://github.com/hectorgie/PoC-in-GitHub