Novell.Remote.Manager.Off-by-One.DoS

description-logoDescription

This indicates an attack attempt to exploit a Denial of Service vulnerability in Novell Remote Manager.
The vulnerability is due to an input validation error in the application when handling a maliciously crafted HTTP "Host" field. As a result, a remote attacker may be able exploit this to cause a denial of service condition on the server via a craft HTTP request.

affected-products-logoAffected Products

Novell Remote Manager 2.0.2 Release 99.10

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch or updates available for this issue.
Note: Traffics through port 8009 are SSL encrypted and hence this signature requires "SSL Inspection" in FortiOS 5.0 with following configuration to detect the attack through port 8009:
SSL Inspection Options->HTTPS Inspection Port(s): 8009

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-10-17 14.706 Sig Added
2018-10-16 13.473 Sig Added