[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-27907-5

Platform: apache-httpd2.0Date: (C)2013-02-19   (M)2022-10-10



The Apache "LimitRequestFieldSizeBody" directive should be configured appropriately.


Parameter:

(1) Number value (in bytes)


Technical Mechanism:

(1) Apache configuration file: LimitRequestFieldSizeBody directive

CCSS Severity:CCSS Metrics:
CCSS Score : Attack Vector:
Exploit Score: Attack Complexity:
Impact Score: Privileges Required:
Severity: User Interaction:
Vector: Scope:
 Confidentiality:
 Integrity:
 Availability:
  

References:
Resource IdReference
CIS Apache Benchmark for Unix For Apache Versions 1.3 and 2.0 Levels I and IIL2 7. Buffer Overflow Protections p42
DISA STIG Apache SERVER 2.0 for Unix Release: 1 Benchmark Date: 23 Nov 2011Rule Title: The HTTP request header field size must be limited. STIG ID: WA000-WWA064 A22 Rule ID: SV-32766r1_rule Vuln ID: V-13738 Severity: CAT II Class: Unclass
DISA STIG Apache SERVER 2.0 for Windows Release: 1 Benchmark Date: 23 Nov 2011Rule Title: The HTTP request header field size must be limited. STIG ID: WA000-WWA064 W22 Rule ID: SV-33010r1_rule Vuln ID: V-13738 Severity: CAT II Class: Unclass


CPE    1
cpe:/a:apache:http_server:2.0

© SecPod Technologies