Weborf 'Range' Header Denial Of Service Vulnerability Network Vulnerability

Summary

This host is running Weborf webserver and is prone to denial of service vulnerability.

Impact

Successful exploitation will allow attacker to cause a denial of service. Impact Level: Application

Solution

Upgrade to Galileo Students Team Weborf version 0.12.1 or later, For updates refer to http://galileo.dmi.unict.it/wiki/weborf/doku.php

Insight

The flaw is caused by an error when processing malicious HTTP headers. By sending a specially-crafted Range header, a remote attacker could exploit this vulnerability to cause the application to crash.

Affected

Galileo Students Team Weborf version prior to 0.12.1

References

http://galileo.dmi.unict.it/wiki/weborf/doku.php?id=news:released_0.12.1
http://secunia.com/advisories/40051
http://xforce.iss.net/xforce/xfdb/59135

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-2262
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Apache mod_include priviledge escalation
bozotic HTTP server Information Disclosure Vulnerability
IBM HTTP Server Multiple Cross Site Scripting Vulnerabilities
Arbor Networks Peakflow SP 'index/' Cross Site Scripting Vulnerability
CommuniGate Pro Web Mail URI Parsing HTML Injection Vulnerability

Weborf 'Range' Header Denial of Service Vulnerability

Take action and discover your vulnerabilities