CVE-2006-6855

AIDeX Mini-WebServer 1.1 early release 3 - Denial of Service via HTTP GET Request Flood

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6855. PoCs published by shinnai.

AI-analyzed exploit summary This exploit performs a Denial of Service (DoS) attack against AID'eX Mini-Webserver Version 1.1 by flooding it with multiple HTTP GET requests. The code establishes 100 concurrent connections to the target server, overwhelming its resources.

Description

AIDeX Mini-WebServer 1.1 early release 3 allows remote attackers to cause a denial of service (daemon crash) via a flood of HTTP GET requests, possibly related to display of HTTP log data by the GUI. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WORKING POC VERIFIED

by shinnai · pythondoswindows

https://www.exploit-db.com/exploits/3034

View Code ZIP pw:eip

This exploit performs a Denial of Service (DoS) attack against AID'eX Mini-Webserver Version 1.1 by flooding it with multiple HTTP GET requests. The code establishes 100 concurrent connections to the target server, overwhelming its resources.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: AID'eX Mini-Webserver Version 1.1 early Release 3

No auth needed

Prerequisites: Network access to the target server · Target server running AID'eX Mini-Webserver Version 1.1

MITRE ATT&CK