Varnish Cache Multiple Denial of Service Vulnerabilities
BID:58314
Info
Varnish Cache Multiple Denial of Service Vulnerabilities
| Bugtraq ID: | 58314 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 05 2013 12:00AM |
| Updated: | Mar 05 2013 12:00AM |
| Credit: | tytusromekiatomek |
| Vulnerable: |
Varnish Varnish Cache 2.1.5 |
| Not Vulnerable: | |
Discussion
Varnish Cache Multiple Denial of Service Vulnerabilities
Varnish Cache is prone to multiple denial-of-service vulnerabilities.
An attacker can exploit these issues to crash the application, effectively denying service to legitimate users.
Varnish Cache 2.1.5 is vulnerable; other versions may also be affected.
Varnish Cache is prone to multiple denial-of-service vulnerabilities.
An attacker can exploit these issues to crash the application, effectively denying service to legitimate users.
Varnish Cache 2.1.5 is vulnerable; other versions may also be affected.
Solution / Fix
Varnish Cache Multiple Denial of Service Vulnerabilities
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Varnish Cache Multiple Denial of Service Vulnerabilities
References:
References:
- Varnish 2.1.5 DoS in fetch_straight() while parsing Content-Length header (SECLISTS)
- Varnish 2.1.5 DoS in STV_alloc() while parsing Content-Length header (SECLISTS)
- Varnish Cache Homepage (Varnish Software)