CVE-2017-15667

HIGH

Flexense SysGauge Server 3.6.18 - Denial of Service via Crafted SERVER_GET_INFO Packet

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-15667. PoCs published by Ahmad Mahfouz.

AI-analyzed exploit summary This exploit sends a crafted SERVER_GET_INFO packet to SysGauge Server 3.6.18 on port 9221, triggering a denial of service (DoS) condition. The packet structure is hardcoded and designed to crash the target service.

Description

In Flexense SysGauge Server 3.6.18, the Control Protocol suffers from a denial of service. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9221.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ahmad Mahfouz · pythondoswindows

https://www.exploit-db.com/exploits/43403

View Code ZIP pw:eip

This exploit sends a crafted SERVER_GET_INFO packet to SysGauge Server 3.6.18 on port 9221, triggering a denial of service (DoS) condition. The packet structure is hardcoded and designed to crash the target service.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: SysGauge Server v3.6.18

No auth needed

Prerequisites: Network access to target port 9221

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/43403/

Scores

CVSS v3 7.5

EPSS 0.0379

EPSS Percentile 88.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-20

Status published

Products (1)

flexense/sysgauge 3.6.18

Published Dec 28, 2017

Tracked Since Feb 18, 2026