APP: Apt-www-proxy awp_log() Denial of Service

This signature detects attempts to exploit a known vulnerability against Apt-www-proxy version 0.1. Attackers can send a malicious request that contains no data to the daemon on port 6543; this denial of service prevents proxy users from receiving important updates using apt-get.

Extended Description

If the apt-www-proxy vulnerability is successfully exploited, an attacker can cause the apt-www-proxy daemon to cease operation, causing a denial of service condition for legitimate users of the software. Due to the nature of the vulnerability, arbitrary code execution may be possible, but this has not yet been successfully demonstrated.

References

URL: http://secunia.com/product/856/ http://www.net-security.org/vuln.php?id=2289 http://www.securitytracker.com/alerts/2002/Dec/1005784.html

Short Name

APP:APT-WWW-PROXY:AWPLOG-DOS

Severity

Warning

Recommended

False

Recommended Action

None

APP: Apt-www-proxy awp_log() Denial of Service

Extended Description

References

Found a potential security threat?