SurfControl SuperScout Email Filter Incomplete HTTP Request DoS Vulnerability

SurfControl SuperScout Email Filter comes with a web-based interface to provide remote access to administrative facilities.

The administrative web interface is prone to a denial of service when handling an incomplete HTTP GET request. If a request is made that does not contain terminating bytes (\r\n\r\n), the administrative server will hang and will not be able to serve other requests.


 

Privacy Statement
Copyright 2010, SecurityFocus