Summary
It was possible to kill the web server by
sending an invalid 'infinite' HTTP request that never ends.
A cracker may exploit this vulnerability to make your web server crash continually or even execute arbirtray code on your system.
Solution
upgrade your software or protect it with a filtering reverse proxy
Severity
Classification
-
CVE CVE-2001-0460 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Apache Input Header Folding and mod_ssl ssl_io_filter_cleanup DoS Vulnerabilities
- Firefly MediaServer HTTP Header Multiple DoS Vulnerabilities
- ClamAV Prior to 0.96.5 Multiple Vulnerabilities
- Beckhoff TwinCAT 'TCATSysSrv.exe' Network Packet Denial of Service Vulnerability
- Comodo Internet Security Denial of Service Vulnerability-05