SurfControl SuperScout Email Filter Administrative Web server empty Content-Length denial of service
| superscout-emailfilter-content-dos (10321) |  Low Risk |
Description:
SurfControl SuperScout Email Filter is vulnerable to a denial of service attack in the Administrative Web server. A remote attacker could send an HTTP GET request with an empty Content-Length value to the Administrative Web server to cause the Web server to crash. The Web server must be restarted to regain normal functionality.
Platforms Affected:
- SurfControl, SuperScout Email Filter
Remedy:
It has been reported that this vulnerability is addressed in a fix that has been released. Contact SurfControl for more information. See References.
Consequences:
Denial of Service
References:
- BugTraq Mailing List, Tue Oct 08 2002 - 20:54:50 CDT, Four Vulnerabilities in SurfControl's SuperScout Email FilterAdministrative Server at http://archives.neohapsis.com/archives/bugtraq/2002-10/0137.html.
- SurfControl Web site, SurfControl - Products for Business - Technical and Support Information at http://www.surfcontrol.com/business/support/.
- BID-5930: SurfControl SuperScout Email Filter Missing Content-Length HTTP Header Field DoS Vulnerability
- CVE-2002-1531: The administrative web interface (STEMWADM) for SurfControl SuperScout Email Filter allows remote attackers to cause a denial of service (crash) via an HTTP request without a Content-Length parameter.
Reported:
Oct 09, 2002
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net