|
Family: Denial of Service --> Category: denial
Abyss httpd crash Vulnerability Scan
Vulnerability Scan Summary Empty HTTP fields crash the remote web server
Detailed Explanation for this Vulnerability Test
It was possible to kill the web server by
sending empty HTTP fields (namely Connection: and Range: ).
A possible hacker may use this flaw to prevent this host from performing
its job properly.
Solution : If the remote web server is Abyss X1, then upgrade to
Abyss X1 v.1.1.4, otherwise inform your vendor of this flaw.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|