Family: Gain root remotely --> Category: denial
HTTP 1.1 header overflow Vulnerability Scan
Vulnerability Scan Summary
Too long HTTP 1.1 header kills the web server
Detailed Explanation for this Vulnerability Test
It was possible to kill the web server by
sending an invalid request with a too long HTTP 1.1 header
(Accept-Encoding, Accept-Language, Accept-Range, Connection,
Expect, If-Match, If-None-Match, If-Range, If-Unmodified-Since,
Max-Forwards, TE, Host)
A cracker may exploit this vulnerability to make your web server
crash continually or even execute arbirtray code on your system.
Solution : upgrade your software or protect it with a filtering reverse proxy
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.