CVE-2002-2428

2022-10-0316:23:50

mitre

www.cve.org

goahead webserver

denial of service

http post

6.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.3%

JSON

webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP POST request that contains a Content-Length header but no body data.

References

data.goahead.com/Software/Webserver/2.1.8/release.htm#fixed-vulnerability-to-malicious-code-in-webs-c