Lucene search
MitreCVE-2010-2435HistoryJun 24, 2010 - 5:30 p.m.
CVE-2010-2435
2010-06-2417:30:01
CWE-20
mitre
web.nvd.nist.gov
28
cve-2010-2435
weborf http server
denial of service
crash
unicode characters
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.9
Confidence
High
EPSS
0.15
Percentile
95.8%
Weborf HTTP Server 0.12.1 and earlier allows remote attackers to cause a denial of service (crash) via Unicode characters in a Connection HTTP header, and possibly other headers.
Affected configurations
Node
salvo_tomaselliweborf_http_serverRange≤0.12.1
ORsalvo_tomaselliweborf_http_serverMatch0.10
ORsalvo_tomaselliweborf_http_serverMatch0.11
ORsalvo_tomaselliweborf_http_serverMatch0.12
| Vendor | Product | Version | CPE |
|---|---|---|---|
| salvo_tomaselli | weborf_http_server | * | cpe:2.3:a:salvo_tomaselli:weborf_http_server:*:*:*:*:*:*:*:* |
| salvo_tomaselli | weborf_http_server | 0.10 | cpe:2.3:a:salvo_tomaselli:weborf_http_server:0.10:*:*:*:*:*:*:* |
| salvo_tomaselli | weborf_http_server | 0.11 | cpe:2.3:a:salvo_tomaselli:weborf_http_server:0.11:*:*:*:*:*:*:* |
| salvo_tomaselli | weborf_http_server | 0.12 | cpe:2.3:a:salvo_tomaselli:weborf_http_server:0.12:*:*:*:*:*:*:* |
Related
openvas
openvas
Weborf < 0.12.1 DoS Vulnerability
2010-06-23 00:00:00
Weborf HTTP Header Processing Denial Of Service Vulnerability
2010-06-23 00:00:00
prion
prion
Code injection
2010-06-24 17:30:00
exploitdb
exploitdb
Weborf HTTP Server - Denial of Service
2010-06-24 00:00:00
cvelist
cvelist
CVE-2010-2435
2010-06-24 17:00:00
nvd
nvd
CVE-2010-2435
2010-06-24 17:30:01
debiancve
debiancve
CVE-2010-2435
2010-06-24 17:30:01
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.9
Confidence
High
EPSS
0.15
Percentile
95.8%
Related for CVE-2010-2435