[转载]FirstClass HTTP Large Request Handling拒绝服务攻击漏洞以及攻击代码

信息来源：www.securiteam.com

Title 26/12/2004
FirstClass HTTP Large Request Handling DoS

Summary
Presented belows is an exploit code for FirstClass's HTTP Large Request DoS.

Details
Vulnerable Systems:
* FirstClass Version 7.1 and 8.0. (Prior versions may be also vulnerable)

The vulnerability is caused due to an error in the handling of large requests. This can e.g. be exploited to potentially cause a vulnerable server to stop responding or function correctly by sending a large amount of POST requests to "/Search" over multiple connections.

Exploit Code:
http://www.eviloctal.com/forum/read.php?tid=6153