The Lotus Domino Web Server contains a flaw that could be exploited to cause a denial of service.
HTTP requests to TCP port 80 consisting of multiple /'s, approximately 8k worth, will result in the consumption of the CPU (99-100%). Typically, 8k of the character "a" results in only 1% of CPU consumption.
CPU usage is pushed to maximum consumption, with a possible denial of service resulting.
Install an application layer filter to detect and block malicious requests.
Our thanks to Defcom Labs , which published an advisory on this and other problems, available at http://www.securityfocus.com/frames/?content=/templates/advisory.html?id=3208.
This document was written by Jason Rafail and is based on information obtained from a Defcom Labs Advisory.
|Date First Published:||2001-07-12|
|Date Last Updated:||2001-07-17 19:17 UTC|