IBM Support

Nessus reports IMM web server is exposed to Vunerability: 'lighttpd 1.4.31 http_request_split_value' - IBM BladeCenter and System x

Troubleshooting


Problem

The following message is reported when users run the Nessus tool and scan the Integrated Management Module (IMM) on any of the systems listed. 63094 (1) - lighttpd 1.4.31 http_request_split_value Function Header Handling DoS

Resolving The Problem

Source

RETAIN tip: H212018

Symptom

The following message is reported when users run the Nessus tool and scan the Integrated Management Module (IMM) on any of the systems listed.

  63094 (1) - lighttpd 1.4.31 http_request_split_value Function Header Handling DoS

 

Affected configurations

The system may be any of the following IBM servers:

  • BladeCenter HS23, type 1929, any model
  • BladeCenter HS23, type 7875, any model
  • BladeCenter HS23E, type 8038, any model
  • BladeCenter HS23E, type 8039, any model
  • System x3100 M4, type 2582, any model
  • System x3250 M4, type 2583, any model
  • System x3300 M4, type 7382, any model
  • System x3500 M4, type 7383, any model
  • System x3530 M4, type 7160, any model
  • System x3550 M4, type 7914, any model
  • System x3630 M4, type 7158, any model
  • System x3650 M4, type 7915, any model
  • System x3750 M4, type 8722, any model
  • System x3750 M4, type 8733, any model

This tip is not software specific.

This tip is not option specific.

The Nessus utility is affected.

Solution

This behavior has been corrected in 2013 fourth quarter LFC release. 2013 fourth quarter LFC release is providing IMM Build ID: 1AOO50D with REVISION 3.65.

The file is available by selecting the appropriate Product Group, type of System, Product name, Product machine type, and Operating system on IBM Support's Fix Central web page, at the following URL:

Workaround

No workaround.

Additional information

Nessus tool is used to scan protocols and services on the system with potential risks or vulnerabilities. The symptom occurs because Nessus checks the banner version which is not updated. IBM will update the banner to fix this symptom. Although the symptom exists, the real function is safe because the suggested program httpd has been included, which will not introduce vulnerability to the systems.

Document Location

Worldwide

Operating System

BladeCenter:Operating system independent / None

System x:Operating system independent / None

[{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HW239","label":"BladeCenter->BladeCenter HS23"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HW23F","label":"BladeCenter->BladeCenter HS23E"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"LOB18","label":"Miscellaneous LOB"}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HW341","label":"System x->System x3250 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HWX81","label":"System x->System x3500 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HWX82","label":"System x->System x3530 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HWX91","label":"System x->System x3550 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HWXA3","label":"System x->System x3650 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HWXG4","label":"System x->System x3300 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HWXG6","label":"System x->System x3750 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HWXH1","label":"System x->System x3630 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}},{"Type":"HW","Business Unit":{"code":"BU016","label":"Multiple Vendor Support"},"Product":{"code":"HWXK0","label":"System x->System x3100 M4"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Line of Business":{"code":"","label":""}}]

Document Information

Modified date:
30 January 2019

UID

ibm1MIGR-5094669

Page Feedback