CVE-2022-4896
HIGHCyber Control 1.650 - Denial of Service via Pop-up Window Generation
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2022-4896. PoCs published by sapellaniz.
AI-analyzed exploit summary This repository contains four Python scripts demonstrating Denial-of-Service (DoS) exploits for CVE-2022-4896 in 'Control de Ciber' cybercafe management software. Each script targets a different service by sending crafted requests to trigger window spawning until the service crashes.
Description
Cyber Control, in its 1.650 version, is affected by a vulnerability in the generation on the server of pop-up windows with the messages "PNTMEDIDAS", "PEDIR", "HAYDISCOA" or "SPOOLER". A complete denial of service can be achieved by sending multiple requests simultaneously on a core.
Exploits (1)
This repository contains four Python scripts demonstrating Denial-of-Service (DoS) exploits for CVE-2022-4896 in 'Control de Ciber' cybercafe management software. Each script targets a different service by sending crafted requests to trigger window spawning until the service crashes.
References (1)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H