top of page
perceptive_background_267k.jpg

AMPPS 2.7 contains a denial of service vulnerability that allows remote attackers to crash the service by sending malformed data to the default HTTP port. Attac…

Published:

5 maart 2026 om 23:00:00

Alert date:

6 maart 2026 om 14:08:47

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies

AMPPS 2.7 contains a denial of service vulnerability (CVE-2018-25169) that allows remote attackers to crash the service by sending malformed data to the default HTTP port. Attackers can establish multiple socket connections and transmit invalid payloads to exhaust server resources. This results in service unavailability and system crashes. The vulnerability affects the AMPPS web server stack and can be exploited remotely without authentication. Multiple proof-of-concept exploits are available demonstrating the attack vector.

Technical details

Mitigation steps:

Affected products:

AMPPS

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2018-25169
https://www.exploit-db.com/exploits/45850
https://www.vulncheck.com/advisories/ampps-denial-of-service-via-malformed-socket-connection

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page