Nessus Plugin #12293
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
Apache Input Header Folding and mod_ssl ssl_io_filter_cleanup DoS Vulnerabilities
- Family:
- Denial of Service
- Category:
- infos
- Copyright:
- This script is Copyright (C) 2004 David Maciejak
- Summary:
- Checks for version of Apache
- Version:
- $Revision: 1.6 $
- Cve_id:
- CAN-2004-0493
- Bugtraq_id:
- 10619, 12877
- Xrefs:
- OSVDB:7269
- Description:
The remote host appears to be running a version of Apache 2.x which is
older than 2.0.50.
There is denial of service in apache httpd 2.0.x by sending a
specially crafted HTTP request. It is possible to consume arbitrary
amount of memory. On 64 bit systems with more than 4GB virtual memory
this may lead to heap based buffer overflow. See also
http://www.guninski.com/httpd1.html
There is also a denial of service vulnerability in mod_ssl's
ssl_io_filter_cleanup function. By sending a request to vulnerable
server over SSL and closing the connection before the server can send
a response, an attacker can cause a memory violation that crashes the
server.
Solution : Upgrade to Apache/2.0.50 or newer
Risk factor : Medium
Generiert am 27.04.2005 um 18:49:54 Uhr.