CVE-2012-5332

Name of the Vulnerable Software and Affected Versions at32 Reverse Proxy version 1.060.310

Description The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash, by sending a long string in an HTTP header field. This can be achieved using the If-Unmodified-Since field.

Recommendations For version 1.060.310, consider restricting the length of strings allowed in HTTP header fields to prevent the denial of service. As a temporary workaround, restrict access to the If-Unmodified-Since field until a patch is available.