Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Denial of Service >> Too long basic authentication DoS

Vulnerability Assessment Details

Too long basic authentication DoS
Vulnerability Assessment Summary
Too long Basic authentifcation chokes the web server

Detailed Explanation for this Vulnerability Assessment
It was possible to kill the web server by
sending a request with an too long Basic authentication field.

A cracker may exploit this vulnerability to make your web server
crash continually or even execute arbirtray code on your system.

Solution : upgrade your software or protect it with a filtering reverse proxy
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Michel Arboi
Cables, Connectors

LSI MegaRAID Internal Low-Power SATA / SAS 9240-4i 6Gb/s PCI-Express 2.0 RAID
$79.5		 LSI MegaRAID Internal Low-Power SATA / SAS 9240-4i 6Gb/s PCI-Express 2.0 RAID pictureFujitsu Primergy RX300 S6 2x E5640 4Core 2.66GHz 24GB 6x300GB 15K SAS Raid COA
$200.0		 Fujitsu Primergy RX300 S6 2x E5640 4Core 2.66GHz 24GB 6x300GB 15K SAS Raid COA picture0.5m SAS SFF-8087 36P To 4 X SATA 7 Pin RAID Controller HDD Data Cable Cord
$5.19		 0.5m SAS SFF-8087 36P To 4 X SATA 7 Pin RAID Controller HDD Data Cable Cord picture0.5m SAS SFF-8087 36P To 4 X SATA RAID Controller HDD Red Data Cables Line Lead
$5.68		 0.5m SAS SFF-8087 36P To 4 X SATA RAID Controller HDD Red Data Cables Line Lead picture


Discussions

No Discussions have been posted on this vulnerability.