Intrusion Prevention

Apache.OpenMeetings.NetTest.Web.Service.DoS

Description

This indicates an attack attempt to exploit a Denial of Service Vulnerability in Apache Software Foundation OpenMeetings.
The vulnerability is due to a lack of rate limiting on NetTest. A remote attacker could exploit this vulnerability by sending a large number of requests. Successful exploitation could result in network exhaustion and denial of service.

Affected Products

Apache Software Foundation OpenMeetings 4.0.0 - 5.0.0

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://openmeetings.apache.org/security.html

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2021-04-28	18.069	Removed
2020-11-24	16.967	Modified	Default_action:pass:drop
2020-11-12	16.961	New

ID	49594
Created	Nov 04, 2020
Updated	Nov 23, 2020
CVE ID
Risk
Exploit Prediction Score	73.29%
Default Action	drop
Active
Affected OS	Windows, Linux, BSD, Solaris
Affected App	Apache
Profile Type	DoS

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Apache.OpenMeetings.NetTest.Web.Service.DoS

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Apache.OpenMeetings.NetTest.Web.Service.DoS

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center