HTTP Cookie Overflow Network Vulnerability

Summary

It was possible to kill the web server by sending an invalid request with a too long Cookie name or value A cracker may exploit this vulnerability to make your web server crash continually or even execute arbirtray code on your system.

Solution

upgrade your software or protect it with a filtering reverse proxy

Severity

Classification

CVE CVE-1999-0071
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

SysV /bin/login buffer overflow (telnet)
CA License Service Multiple Vulnerabilities
irix rpc.passwd overflow
cfengine CFServD transaction packet buffer overrun vulnerability
TFTPD small overflow

HTTP Cookie overflow

Take action and discover your vulnerabilities