ID CVE-2004-2035Type cveReporter NVDModified 2017-07-10T21:31:34
Description
MiniShare 1.3.2 allows remote attackers to cause a denial of service (crash) via a malformed HTTP GET or HEAD request without the proper number of trailing CRLF sequences.
{"id": "CVE-2004-2035", "bulletinFamily": "NVD", "title": "CVE-2004-2035", "description": "MiniShare 1.3.2 allows remote attackers to cause a denial of service (crash) via a malformed HTTP GET or HEAD request without the proper number of trailing CRLF sequences.", "published": "2004-05-26T00:00:00", "modified": "2017-07-10T21:31:34", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-2035", "reporter": "NVD", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/16260", "http://sourceforge.net/project/shownotes.php?release_id=241158", "http://www.securityfocus.com/bid/10417", "http://marc.info/?l=bugtraq&m=108563992129877&w=2", "http://www.autistici.org/fdonato/advisory/MiniShare1.3.2-adv.txt"], "cvelist": ["CVE-2004-2035"], "type": "cve", "lastseen": "2017-07-11T11:14:39", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:minishare:minimal_http_server:1.3.2"], "cvelist": ["CVE-2004-2035"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "MiniShare 1.3.2 allows remote attackers to cause a denial of service (crash) via a malformed HTTP GET or HEAD request without the proper number of trailing CRLF sequences.", "edition": 2, "enchantments": {}, "hash": "aff9de2b107f065b4df3c3421f5929e351fc1f27a9c5046ddbad9152324fedc0", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "bc0c0d604d843c2671226e47261d7b09", "key": "published"}, {"hash": "8ff28e8034aee599b2f155852ef6d3e7", "key": "cpe"}, {"hash": "59c9c66b316a4b57f51dd3ab97d2db4e", "key": "title"}, {"hash": "5cc40aea4178fc2d3f263d090d5be1f2", "key": "cvelist"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "867c43a4322e90c1fad265ad6fd2f3a7", "key": "references"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "e4a8e06abc5b47ce32c461e4d18a9b36", "key": "modified"}, {"hash": "6ea87971b2c098c25de78ba610448eb5", "key": "href"}, {"hash": "4ecc43b19e2d3ca9805fea054d335b15", "key": "description"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-2035", "id": "CVE-2004-2035", "lastseen": "2017-04-18T15:50:44", "modified": "2016-10-17T23:05:14", "objectVersion": "1.2", "published": "2004-05-26T00:00:00", "references": ["http://sourceforge.net/project/shownotes.php?release_id=241158", "http://www.securityfocus.com/bid/10417", "http://marc.info/?l=bugtraq&m=108563992129877&w=2", "http://www.autistici.org/fdonato/advisory/MiniShare1.3.2-adv.txt", "http://xforce.iss.net/xforce/xfdb/16260"], "reporter": "NVD", "scanner": [], "title": "CVE-2004-2035", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 2, "lastseen": "2017-04-18T15:50:44"}, {"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:minishare:minimal_http_server:1.3.2"], "cvelist": ["CVE-2004-2035"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "MiniShare 1.3.2 allows remote attackers to cause a denial of service (crash) via a malformed HTTP GET or HEAD request without the proper number of trailing CRLF sequences.", "edition": 1, "hash": "dec6395e90dacbe6389a306c850ff6d16a33e9b1fc9713b36a6feed773d88151", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "bc0c0d604d843c2671226e47261d7b09", "key": "published"}, {"hash": "8ff28e8034aee599b2f155852ef6d3e7", "key": "cpe"}, {"hash": "59c9c66b316a4b57f51dd3ab97d2db4e", "key": "title"}, {"hash": "5cc40aea4178fc2d3f263d090d5be1f2", "key": "cvelist"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "a9647227bc13e6b337aa7688d6e39029", "key": "modified"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "e6f9096a25f4db000ffc7f8ce88093e2", "key": "references"}, {"hash": "6ea87971b2c098c25de78ba610448eb5", "key": "href"}, {"hash": "4ecc43b19e2d3ca9805fea054d335b15", "key": "description"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-2035", "id": "CVE-2004-2035", "lastseen": "2016-09-03T04:45:55", "modified": "2008-09-05T16:43:01", "objectVersion": "1.2", "published": "2004-05-26T00:00:00", "references": ["http://marc.theaimsgroup.com/?l=bugtraq&m=108563992129877&w=2", "http://sourceforge.net/project/shownotes.php?release_id=241158", "http://www.securityfocus.com/bid/10417", "http://www.autistici.org/fdonato/advisory/MiniShare1.3.2-adv.txt", "http://xforce.iss.net/xforce/xfdb/16260"], "reporter": "NVD", "scanner": [], "title": "CVE-2004-2035", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T04:45:55"}], "edition": 3, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "8ff28e8034aee599b2f155852ef6d3e7"}, {"key": "cvelist", "hash": "5cc40aea4178fc2d3f263d090d5be1f2"}, {"key": "cvss", "hash": "84813b1457b92d6ba1174abffbb83a2f"}, {"key": "description", "hash": "4ecc43b19e2d3ca9805fea054d335b15"}, {"key": "href", "hash": "6ea87971b2c098c25de78ba610448eb5"}, {"key": "modified", "hash": "1be6552d8f3674b1525fc701c3a52e32"}, {"key": "published", "hash": "bc0c0d604d843c2671226e47261d7b09"}, {"key": "references", "hash": "7341ee57ce79db8edb772209f5394a1f"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "59c9c66b316a4b57f51dd3ab97d2db4e"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "4c2a8e5599003c25a0e456ac4e11dc9ef9d1e82cd7cad3de41d3df88af2fbfd0", "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE", "modified": "2017-07-11T11:14:39"}, "dependencies": {"references": [{"type": "exploitdb", "idList": ["EDB-ID:24144"]}], "modified": "2017-07-11T11:14:39"}, "vulnersScore": 5.0}, "objectVersion": "1.3", "cpe": ["cpe:/a:minishare:minimal_http_server:1.3.2"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": []}
{"exploitdb": [{"lastseen": "2016-02-02T22:36:50", "bulletinFamily": "exploit", "description": "MiniShare Server 1.3.2 Remote Denial Of Service Vulnerability. CVE-2004-2035. Dos exploit for windows platform", "modified": "2004-05-26T00:00:00", "published": "2004-05-26T00:00:00", "id": "EDB-ID:24144", "href": "https://www.exploit-db.com/exploits/24144/", "type": "exploitdb", "title": "MiniShare Server 1.3.2 - Remote Denial of Service Vulnerability", "sourceData": "source: http://www.securityfocus.com/bid/10417/info\r\n\r\nMinishare is affected by a remote denial of service vulnerability. This issue is due to a failure of the application to handle improperly formed HTTP requests.\r\n\r\nThis issue will allow an attacker to cause the affected computer to stop responding, denying service to legitimate users.\r\n\r\nGET:\r\n\r\n1. GET /something HTTP/1.1\r\n-\r\n2. GET /something HTTP/1.1\\n\r\n-\r\n\r\n\r\nHEAD:\r\n\r\n1. HEAD /something HTTP/1.1\r\n-\r\n2. HEAD /something HTTP/1.1\\n\r\n- ", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "sourceHref": "https://www.exploit-db.com/download/24144/"}]}
