CVE-2011-4882

atvise webMI2ADS < 2.0.2 - Denial of Service via HTTP Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-4882.

AI-analyzed exploit summary This is a detailed technical writeup by Luigi Auriemma describing multiple vulnerabilities in atvise webMI2ADS, including directory traversal, NULL pointer dereference, remote shutdown, and resource consumption. It includes assembly-level analysis and proof-of-concept commands but does not contain functional exploit code.

Description

The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to cause a denial of service (application exit) via an unspecified command in an HTTP request.

Exploits (1)

exploitdb WRITEUP

doswindows

https://www.exploit-db.com/exploits/17963

View Code ZIP pw:eip

This is a detailed technical writeup by Luigi Auriemma describing multiple vulnerabilities in atvise webMI2ADS, including directory traversal, NULL pointer dereference, remote shutdown, and resource consumption. It includes assembly-level analysis and proof-of-concept commands but does not contain functional exploit code.

Classification

Writeup 95%

Attack Type

Other

Complexity

Moderate

Reliability

Theoretical

Target: atvise webMI2ADS <= 1.0

No auth needed

Prerequisites: Network access to the target server

MITRE ATT&CK

T1006 - Direct Volume Access T1499 - Endpoint Denial of Service T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1

Core References

US Government Resource x_refsource_misc

http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-01.pdf

Scores

EPSS 0.0320

EPSS Percentile 86.4%

Details

CWE

CWE-94

Status published

Products (3)

atvise/webmi2ads 1.0

atvise/webmi2ads 2.0

atvise/webmi2ads < 2.0.1

Published Apr 13, 2012

Tracked Since Feb 18, 2026