Caudium Web Server < 1.4.4 RC2 Malformed URI DoS

high Nessus Network Monitor Plugin ID 2382

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is running Caudium Web Server. The version being run is vulnerable to an attack where a malformed URI causes the web server to stop responding to requests. An attacker exploiting this flaw would only need to be able to connect to the Webserver and issue an HTTP 'GET' request.

Solution

Upgrade to version 1.4.4 RC2 or higher.

Plugin Details

Severity: High

ID: 2382

Family: Web Servers

Published: 11/3/2004

Updated: 3/6/2019

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS v3

Risk Factor: High

Base Score: 7.5

Temporal Score: 7.2

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Reference Information

BID: 11567

Detections

Analytics