Detections
Analytics
Alibaba 2.0 HTTP Request Overflow DoS
critical Nessus Network Monitor Plugin ID 1487
Synopsis
It is possible to disable the remote AliBaba web server by sending a long argument to a GET or POST HTTP request.Description
It is possible to disable the remote AliBaba web server by sending a long argument to a GET or POST HTTP request.Solution
None at this time.Plugin Details
Severity: Critical
ID: 1487
Family: Web Servers
Published: 8/20/2004
Updated: 3/6/2019
Nessus ID: 10012
Risk Information
VPR
Risk Factor: Medium
Score: 4.2
CVSS v2
Risk Factor: High
Base Score: 9.3
Temporal Score: 8.1
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 9.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:X/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:computer_software_manufaktur:alibaba
Reference Information
CVE: CVE-2000-0626
BID: 1482