HTTP.Host.Header.Buffer.Overflow

description-logoDescription

This indicates detection of an overly long HTTP Host value.
HTTP servers that have insufficient sanitizing of HTTP requests field might be prone to such an attack. Successful attacks may allow a remote attacker to execute arbitrary code within the context of the webserver, crash the affected application or deny services to legitimate users.

affected-products-logoAffected Products

Any unprotected or misconfigured HTTP server is vulnerable to the attack.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply appropriate patch from the vendor or upgrade to non-vulnerable version if available.
Monitor the traffic from that network for any suspicious activity.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-04-10 14.590 Sig Added
2019-04-05 14.587 Sig Added