HAProxy.Client.and.Server.Cookie.Parsing.DoS

description-logoDescription

This indicates an attack attempt to exploit a Denial of Service Vulnerability in HAProxy.
A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to a vulnerable HAProxy server. Successful exploitation could result in denial-of-service conditions.

affected-products-logoAffected Products

HAProxy prior to 2.0.3

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.mail-archive.com/haproxy@formilux.org/msg34586.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-10-31 14.715 Default_action:pass:drop
2019-10-08 14.701 Sig Added
2019-08-23 14.676