HAProxy.Set-Cookie2.Header.Handling.DoS
Description
This indicates an attack attempt to exploit a Denial of Service Vulnerability in HAProxy HAProxy.
The vulnerability is due to improper checking of HTTP Set-Cookie2 Header. A remote attacker could exploit this vulnerability by sending a crafted HTTP response with the malicious header to a vulnerable server. Successful exploitation of this vulnerability could lead to denial-of-service conditions.
Affected Products
HAProxy HAProxy prior to 2.5.2
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.mail-archive.com/haproxy@formilux.org/msg41833.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |