This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.
The remote web server is prone to a remote format string attack.
The remote web server seems to be vulnerable to a remote format string
attack based on the way it responds to a request containing a header
whose name includes a format string. An anonymous attacker may be able
to leverage this flaw to make the affected service crash or to execute
arbitrary code on this host.
Upgrade the software or contact the vendor and inform them of this
Risk factor :
Critical / CVSS Base Score : 10.0
Family: Web Servers
Nessus Plugin ID: 15641 (http_header_name_format_string.nasl)
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now