Sonicwall Signatures
Go to
All Categories
list.
HAProxy HTTP Header Handling Integer Overflow
Category:
WEB-ATTACKS
An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4844
© SonicWall 2020 |
Privacy Policy
|
Conditions for use
Version: 10.0
