Signature Detail

Short Name	APP:APT-WWW-PROXY:AWPLOG-DOS
Severity	Low
Recommended	No
Category	APP
Keywords	apt proxy dos
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

APP: Apt-www-proxy awp_log() Denial of Service

This signature detects attempts to exploit a known vulnerability against Apt-www-proxy version 0.1. Attackers can send a malicious request that contains no data to the daemon on port 6543; this denial of service prevents proxy users from receiving important updates using apt-get.

Extended Description

If the apt-www-proxy vulnerability is successfully exploited, an attacker can cause the apt-www-proxy daemon to cease operation, causing a denial of service condition for legitimate users of the software. Due to the nature of the vulnerability, arbitrary code execution may be possible, but this has not yet been successfully demonstrated.

References

URL: http://secunia.com/product/856/
URL: http://www.net-security.org/vuln.php?id=2289
URL: http://www.securitytracker.com/alerts/2002/Dec/1005784.html

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

APP: Apt-www-proxy awp_log() Denial of Service

Extended Description

References