File http-vuln-cve2011-3192
Script types:
portrule
Categories:
vuln, safe
Download: http://nmap.org/svn/scripts/http-vuln-cve2011-3192.nse
User Summary
Detects a denial of service vulnerability in the way the Apache web server handles requests for multiple overlapping/simple ranges of a page.
References:
- http://seclists.org/fulldisclosure/2011/Aug/175
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192
- http://nessus.org/plugins/index.php?view=single&id=55976
Script Arguments
http-vuln-cve2011-3192.path
Define the request path
http-vuln-cve2011-3192.hostname
Define the host name to be used in the HEAD request sent to the server
smbdomain, smbhash, smbnoguest, smbpassword, smbtype, smbusername
See the documentation for the smbauth library.http.max-cache-size, http.max-pipeline, http.pipeline, http.useragent
See the documentation for the http library.vulns.showall
See the documentation for the vulns library.Example Usage
nmap --script http-vuln-cve2011-3192.nse [--script-args http-vuln-cve2011-3192.hostname=nmap.scanme.org] -pT:80,443 <host>
Script Output
Host script results: | http-vuln-cve2011-3192: | VULNERABLE: | Apache byterange filter DoS | State: VULNERABLE | IDs: CVE:CVE-2011-3192 OSVDB:74721 | Description: | The Apache web server is vulnerable to a denial of service attack when numerous | overlapping byte ranges are requested. | Disclosure date: 2011-08-19 | References: | http://seclists.org/fulldisclosure/2011/Aug/175 | http://nessus.org/plugins/index.php?view=single&id=55976 | http://osvdb.org/74721 |_ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3192
Requires
Author: Duarte Silva <duarte.silva@serializing.me>
License: Same as Nmap--See http://nmap.org/book/man-legal.html