BrowseGate HTTP MIME Headers Remote Overflow

This script is Copyright (C) 2002-2014 Tenable Network Security, Inc.


Synopsis :

It may be possible to execute arbitrary code on the remote web server.

Description :

It is possible to kill the remote server by sending it an invalid
request with too long HTTP headers (Authorization and Referer).

BrowseGate proxy is known to be vulnerable to this flaw.

An attacker could exploit this vulnerability to cause the web server
to crash continually or to execute arbitrary code on the system.

Solution :

Upgrade your software or protect it with a filtering reverse proxy

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.7
(CVSS2#E:F/RL:OF/RC:C)

Family: Web Servers

Nessus Plugin ID: 11130 (browsegate_http_overflows.nasl)

Bugtraq ID: 1702

CVE ID: CVE-2000-0908