Gain a shell remotely : HTTP 1.0 Header Overflow DoS Vulnerability

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.11127

Category: Gain a shell remotely

Title: HTTP 1.0 Header Overflow DoS Vulnerability

Summary: It was possible to kill the web server by sending an invalid; request with a too long header (From, If-Modified-Since, Referer or Content-Type).

Description: Summary:
It was possible to kill the web server by sending an invalid
request with a too long header (From, If-Modified-Since, Referer or Content-Type).

Vulnerability Impact:
An attacker may exploit this vulnerability to make your web
server crash continually or even execute arbitrary code on the target system.

Solution:
Upgrade your software or protect it with a filtering reverse
proxy.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Copyright Copyright (C) 2005 Michel Arboi

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.11127
Category:	Gain a shell remotely
Title:	HTTP 1.0 Header Overflow DoS Vulnerability
Summary:	It was possible to kill the web server by sending an invalid; request with a too long header (From, If-Modified-Since, Referer or Content-Type).
Description:	Summary: It was possible to kill the web server by sending an invalid request with a too long header (From, If-Modified-Since, Referer or Content-Type). Vulnerability Impact: An attacker may exploit this vulnerability to make your web server crash continually or even execute arbitrary code on the target system. Solution: Upgrade your software or protect it with a filtering reverse proxy. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Copyright	Copyright (C) 2005 Michel Arboi