The exploit involves sending a specially crafted request to the Vdesk server, which causes the software to crash. This can be done using a simple HTTP request, making it easy for attackers to launch the exploit. Once the Vdesk service is crashed, the attacker can potentially gain access to the system or disrupt its operation.
Cybersecurity analysts often encounter confusing exploit names. "HangupPHP3" is a rather than a specific CVE. Several CVEs map to variations: vdesk hangupphp3 exploit
Seeing this URI in your logs usually just means a user logged out or a scanner hit your gateway. Session Management: The exploit involves sending a specially crafted request