top of page
perceptive_background_267k.jpg

AMPPS 2.7 contains a denial of service vulnerability that allows remote attackers to crash the service by sending malformed data to the default HTTP port. Attac…

Published:

5 March 2026 at 23:00:00

Alert date:

6 March 2026 at 14:08:47

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

AMPPS 2.7 contains a denial of service vulnerability (CVE-2018-25169) that allows remote attackers to crash the service by sending malformed data to the default HTTP port. Attackers can establish multiple socket connections and transmit invalid payloads to exhaust server resources. This results in service unavailability and system crashes. The vulnerability affects the AMPPS web server stack and can be exploited remotely without authentication. Multiple proof-of-concept exploits are available demonstrating the attack vector.

Technical details

Mitigation steps:

Affected products:

AMPPS

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2018-25169
https://www.exploit-db.com/exploits/45850
https://www.vulncheck.com/advisories/ampps-denial-of-service-via-malformed-socket-connection

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page