Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1199

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-1999-1199
Last Modified 05 Sep 2008 04:18:57
Published 07 Aug 1998 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-1199

Summary

Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the "sioux" vulnerability.

Vulnerable Systems

Application

  • Apache Http Server 1.3.1


References

BUGTRAQ - 19980807 YA Apache DoS attack

CONFIRM - http://www.redhat.com/support/errata/rh51-errata-general.html#apache

BUGTRAQ - 19980810 Apache DoS Attack

BUGTRAQ - 19980811 Apache 'sioux' DOS fix for TurboLinux

BUGTRAQ - 19980808 Debian Apache Security Update


Last Updated: 27 May 2016 10:35:19