The Lotus Domino Web Server contains a flaw that could be exploited to cause a denial of service.
HTTP requests to TCP port 80 consisting of multiple /'s, approximately 8k worth, will result in the consumption of the CPU (99-100%). Typically, 8k of the character "a" results in only 1% of CPU consumption.
CPU usage is pushed to maximum consumption, with a possible denial of service resulting.
Install an application layer filter to detect and block malicious requests.
Our thanks to Defcom Labs, which published an advisory on this and other problems, available at http://www.securityfocus.com/frames/?content=/templates/advisory.html?id=3208.
This document was written by Jason Rafail and is based on information obtained from a Defcom Labs Advisory.
|Date First Published:||2001-07-12|
|Date Last Updated:||2001-07-17 19:17 UTC|