HAProxy Multiple Denial of Service Vulnerabilities
PVS ID: 6909 FAMILY: Web Servers RISK: MEDIUM NESSUS ID:66936
Description: Synopsis :\n\nThe remote host is running a load balancer affected by multiple vulnerabilities.\n\nFor your information, the observed version of HAProxy installed on the remote host is : \n %L \n\nBased on the version obtained for HAProxy, the remote host is running load balancing software that is potentially affected by a denial of service in parsing HTTP headers.(CVE-2013-2175)

Solution: Upgrade to HAProxy version 1.4.24 / 1.5-dev19 or higher.

CVE-2013-2175


Copyright Tenable Network Security Inc. 2013