vendor:
Web Server
by:
L.Facq
7.5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: Web Server
Affected Version From: Apache 1.2.5
Affected Version To: Apache 1.3.2-dev
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux, Mac
1998
Apache Web Server and MessageMedia UnityMail Denial of Service Vulnerability
Apache Web Server and MessageMedia UnityMail are susceptible to a denial of service attack if a significant amount of 8000 byte MIME headers are sent. Both will crash and restart of the application is required in order to regain normal functionality. Other web servers may be also be vulnerable to this attack.
Mitigation:
Limit the number of MIME headers that can be included in a client request.