Short Name |
APP:APT-WWW-PROXY:AWPLOG-DOS |
---|---|
Severity |
Warning |
Recommended |
No |
Category |
APP |
Keywords |
Apt-www-proxy awp_log() Denial of Service |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Apt-www-proxy version 0.1. Attackers can send a malicious request that contains no data to the daemon on port 6543; this denial of service prevents proxy users from receiving important updates using apt-get.
If the apt-www-proxy vulnerability is successfully exploited, an attacker can cause the apt-www-proxy daemon to cease operation, causing a denial of service condition for legitimate users of the software. Due to the nature of the vulnerability, arbitrary code execution may be possible, but this has not yet been successfully demonstrated.