CouchDB contains a vulnerability whereby a request with a very large _uuid count can cause the CouchDB process to stop responding. This causes a denial of service condition, and may require a machine restart in order to recover.
Apache Software Foundation
CouchDB 1.5.0 and possibly other versions
Denial of Service
Exploitation of this vulnerability will cause CouchDB to become unresponsive, causing a denial of service condition.
BeyondTrust Prevention and Detection:
BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
- 33389 - Apache CouchDB 1.5.0 and Prior Denial of Service
Filter GET requests with an unusually large _uuid count, such as the one demonstrated in the proof of concept.