Summary
It was possible to kill the web server by
sending a request with an too long Basic authentication field.
A cracker may exploit this vulnerability to make your web server crash continually or even execute arbirtray code on your system.
Solution
upgrade your software or protect it with a filtering reverse proxy
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apache 'mod_deflate' Denial Of Service Vulnerability - July09
- Asterisk PBX SDP Header Overflow Vulnerability
- Adobe Reader/Acrobat JavaScript Method Handling Vulnerability (Windows)
- Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Linux)
- Adobe Reader '.ETD File' Denial of Service Vulnerability (Linux)