HP-UX VVOS Netscape Enterprise Server Long URL DoS

1999-05-14T00:00:00
ID OSVDB:11285
Type osvdb
Reporter John Daniele(jdaniele@kpmg.ca)
Modified 1999-05-14T00:00:00

Description

Vulnerability Description

Netscape Enterprise Server in HP-UX VirtualVault Operating System (VVOS) contains a flaw that may allow a remote denial of service. By sending an overly long URL to the server a remote attacker could cause the service to crash resulting in a loss of availability.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Hewlett-Packard has released a patch to address this vulnerability.

Short Description

Netscape Enterprise Server in HP-UX VirtualVault Operating System (VVOS) contains a flaw that may allow a remote denial of service. By sending an overly long URL to the server a remote attacker could cause the service to crash resulting in a loss of availability.

References:

Vendor URL: http://www.hp.com/ Vendor Specific Advisory URL Mail List Post: http://archives.neohapsis.com/archives/bugtraq/1999_2/0479.html Keyword: Virtualvault Operating System,HPSBUX9906-098 ISS X-Force ID: 2194 CVE-1999-0686 CIAC Advisory: j-046 Bugtraq ID: 259