Description
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly validate values in HTTP requests, which allows remote attackers to cause a denial of service (resource consumption) via a crafted request.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Luigi Auriemma · textdoswindows
https://www.exploit-db.com/exploits/17963
References (1)
Core 1
Core References
US Government Resource x_refsource_misc
http://www.us-cert.gov/control_systems/pdf/ICSA-12-102-01.pdf
Scores
EPSS
0.1548
EPSS Percentile
94.7%
Details
CWE
CWE-20
Status
published
Products (3)
atvise/webmi2ads
1.0
atvise/webmi2ads
2.0
atvise/webmi2ads
< 2.0.1
Published
Apr 13, 2012
Tracked Since
Feb 18, 2026