ID de Prueba:	1.3.6.1.4.1.25623.1.0.11061
Categoría:	Gain a shell remotely
Título:	HTTP Version Number Overflow DoS Vulnerability
Resumen:	It was possible to kill the web server by; sending an invalid GET request with a too long HTTP version field.
Descripción:	Summary: It was possible to kill the web server by sending an invalid GET request with a too long HTTP version field. Vulnerability Impact: An attacker may exploit this vulnerability to make the web server crash continually or even execute arbirtray code on the affected system. Affected Software/OS: JanaServer 2.2.1 and prior, JanaServer 1.46 and prior are known to be affected. Other versions or products might be affected as well. Solution: Upgrade your software or protect it with a filtering reverse proxy. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2002-1061 BugTraq ID: 5319 http://www.securityfocus.com/bid/5319 BugTraq ID: 5320 http://www.securityfocus.com/bid/5320 BugTraq ID: 5322 http://www.securityfocus.com/bid/5322 BugTraq ID: 5324 http://www.securityfocus.com/bid/5324 Bugtraq: 20020726 SECURITY.NNOV: multiple vulnerabilities in JanaServer (Google Search) http://archives.neohapsis.com/archives/bugtraq/2002-07/0329.html http://www.iss.net/security_center/static/9682.php http://www.iss.net/security_center/static/9683.php http://www.iss.net/security_center/static/9685.php http://www.iss.net/security_center/static/9686.php
Copyright	Copyright (C) 2002 Michel Arboi

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.