Exploitation Summary
EIP tracks 1 public exploit for CVE-2004-1691. PoCs published by GulfTech Security.
AI-analyzed exploit summary The writeup describes a DoS and XSS vulnerability in DNS4Me's built-in web server. The DoS causes CPU exhaustion, while the XSS arises from unsanitized URI input.
Description
The Web Server in DNS4Me 3.0.0.4 allows remote attackers to cause a denial of service (CPU consumption and crash) via a large amount of data.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by GulfTech Security · textdosmultiple
https://www.exploit-db.com/exploits/24610
The writeup describes a DoS and XSS vulnerability in DNS4Me's built-in web server. The DoS causes CPU exhaustion, while the XSS arises from unsanitized URI input.
Classification
Writeup 90%
Attack Type
Dos | Xss
Complexity
Trivial
Reliability
Theoretical
Target:
DNS4Me 3.0.0.4
No auth needed
Prerequisites:
Network access to the DNS4Me web server
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (6)
Core 6
Core References
Vendor Advisory x_refsource_misc
http://www.gulftech.org/?node=research&article_id=00049-09162004
Vendor Advisory vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1011334
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109552436811493&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17426
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/12595
Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/11213
Scores
EPSS
0.0358
EPSS Percentile
87.9%
Details
Status
published
Products (1)
rhinosoft/dns4me
3.0.0.4
Published
Sep 18, 2004
Tracked Since
Feb 18, 2026