Cerbere Proxy Server Long Host Header Field Overflow DoS

High Nessus Network Monitor Plugin ID 2194


The remote host is vulnerable to a buffer overflow.


The remote host is running Cerbere Proxy Server, a HTTP/FTP proxy server for Windows operating systems. It is reported that versions up to and including 1.2 are vulnerable to a remote denial of service in the 'Host:' HTTP field processing. An attacker may craft a malicious HTTP request with a large 'Host:' field to deny service to legitimate users.


No solution is known at this time.

Plugin Details

Severity: High

ID: 2194

File Name: 2194.prm

Family: Web Servers

Published: 2004/09/01

Modified: 2016/01/15

Dependencies: 1442

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:U/RC:ND


Base Score: 7.3

Temporal Score: 7.3


Temporal Vector: CVSS3#E:H/RL:U/RC:X

Reference Information

BID: 11085