Apache Input Header Folding Remote DoS

Medium Log Correlation Engine Plugin ID 800575

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack

Description

The remote host appears to be running a version of Apache 2.x that is older than 2.0.50. There is denial of service in Apache httpd 2.0.x by sending a specially crafted HTTP request. It is possible to consume arbitrary amounts of memory. On 64 bit systems with more than 4GB virtual memory this may lead to heap based buffer overflow.

Solution

Upgrade to most recent version of Apache.

See Also

http://www.guninski.com/httpd1.html

Plugin Details

Severity: Medium

ID: 800575

File Name: 800575.prm

Family: Web Servers

Nessus ID: 12293

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Reference Information

CVE: CVE-2004-0493

BID: 12877, 10619