CVE-2024-58306

HIGH

minaliC 2.0.0 - Denial of Service via Oversized GET Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-58306. PoCs published by Fernando Mengali.

AI-analyzed exploit summary This Perl script exploits a Denial of Service (DoS) vulnerability in minaliC 2.0.0 by sending a malformed HTTP GET request with an oversized payload. The exploit targets Windows XP Professional Service Pack 2 and 3, causing the server to crash upon processing the request.

Description

minaliC 2.0.0 contains a denial of service vulnerability that allows remote attackers to crash the web server by sending oversized GET requests. Attackers can send crafted HTTP requests with excessive data to overwhelm the server and cause service interruption.

Exploits (1)

exploitdb WORKING POC
by Fernando Mengali · perlremotewindows
https://www.exploit-db.com/exploits/51917

This Perl script exploits a Denial of Service (DoS) vulnerability in minaliC 2.0.0 by sending a malformed HTTP GET request with an oversized payload. The exploit targets Windows XP Professional Service Pack 2 and 3, causing the server to crash upon processing the request.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: minaliC 2.0.0
No auth needed
Prerequisites: Network access to the target server · minaliC 2.0.0 running on Windows XP SP2/SP3
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/51917
Product technical-description
http://minalic.sourceforge.net/

Scores

CVSS v4 8.7
EPSS 0.0060
EPSS Percentile 70.0%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact partial

Details

CWE
CWE-400
Status published
Products (1)
minalic/minaliC 2.0.0
Published Dec 11, 2025
Tracked Since Feb 18, 2026