2449 matches found
Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass
Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass // source: https://www.securityfocus.com/bid/4265/info Trend Micro InterScan VirusWall is a high performance internet gateway virus scanning package. It is capable of scanning incoming content over HTTP, SMTP and FTP for viruses...
Microsoft IIS/5 bogus Content-length bug.
Let's say that it's a bug, not a security flaw, but probably can lead into denial of service with some tweaking. When you send a bad request to Microsoft IIS/5.0 server it gives you the error and closes the connection, like when you fail to authenticate. Well... let's take a look to a normal...
DoS через Content-Length в Microsoft IIS
При указании большого Content-Length в HTTP-запросе сервер немедленно резервирует оперативную память. Ппутем создания нескольких незавершенных одновременных подключений можно заблокировать всю память сервера...
CVE-2001-1186
Microsoft IIS 5.0 allows remote attackers to cause a denial of service via an HTTP request with a content-length value that is larger than the size of the request, which prevents IIS from timing out the connection...
Microsoft IIS 5.0 - False Content-Length Field Denial of Service
Microsoft IIS 5.0 - False Content-Length Field Denial of Service source: https://www.securityfocus.com/bid/3667/info Microsoft IIS 5.0 may be prone to a denial of service condition when sent a specially crafted malformed HTTP GET header. If an IIS 5.0 web server is sent a crafted HTTP GET request...
Microsoft IIS 5.0 - False Content-Length Field Denial of Service
source: https://www.securityfocus.com/bid/3667/info Microsoft IIS 5.0 may be prone to a denial of service condition when sent a specially crafted malformed HTTP GET header. If an IIS 5.0 web server is sent a crafted HTTP GET request which contains a falsified and excessive "Content-Length" field,...
WebTrends Enterprise Reporting Server 1.5 - Negative Content Length Denial of Service
WebTrends Enterprise Reporting Server 1.5 - Negative Content Length Denial of Service source: https://www.securityfocus.com/bid/569/info Specifying a negative content-length in a POST operation to the WebTrends Enterprise Reporting Server will crash the web server. !/usr/bin/perl -w Example DoS...
WebTrends Enterprise Reporting Server 1.5 - Negative Content Length Denial of Service
source: https://www.securityfocus.com/bid/569/info Specifying a negative content-length in a POST operation to the WebTrends Enterprise Reporting Server will crash the web server. !/usr/bin/perl -w Example DoS against WebTrends Enterprise Reporting Server 8/8/99 rpc use IO::Socket; die "usage: $0...
HTTP Proxy POST Request Relaying
The proxy allows the users to perform POST requests such as POST http://cvs.nessus.org:21 without any Content-length tag. This request may give an attacker the ability to have an interactive session. This problem may allow attackers to go through your firewall, by connecting to sensitive ports li...