PT-2009-4730 · Art Of Defence · Artofdefence Hyperguard Web Application Firewall

Published

2009-07-02

Updated

2020-11-16

CVE-2009-2299

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Artofdefence Hyperguard Web Application Firewall (WAF) module versions prior to 2.5.5-11635 Artofdefence Hyperguard Web Application Firewall (WAF) module version 3.0 prior to 3.0.3-11636 Artofdefence Hyperguard Web Application Firewall (WAF) module version 3.1 prior to 3.1.1-11637

Description The issue allows remote attackers to cause a denial of service, specifically memory consumption, via an HTTP request. This request has a large Content-Length value but does not include any POST data.

Recommendations For versions prior to 2.5.5-11635, update to version 2.5.5-11635 or later. For version 3.0 prior to 3.0.3-11636, update to version 3.0.3-11636 or later. For version 3.1 prior to 3.1.1-11637, update to version 3.1.1-11637 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2009-2299

Affected Products

Artofdefence Hyperguard Web Application Firewall

PT-2009-4730 · Art Of Defence · Artofdefence Hyperguard Web Application Firewall

CVE-2009-2299

Related Identifiers

Affected Products

References · 4