Lucene search

K
freebsdFreeBSD282DFEA0-3378-11D9-B404-000C6E8F12EF
HistoryNov 01, 2004 - 12:00 a.m.

apache2 multiple space header denial-of-service vulnerability

2004-11-0100:00:00
vuxml.freebsd.org
11

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.966

Percentile

99.6%

It is possible for remote attackers to cause a denial-of-service
scenario on Apache 2.0.52 and earlier by sending an HTTP GET
request with a MIME header containing multiple lines full of
whitespaces.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchapache<= 2.0.52_2UNKNOWN

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.966

Percentile

99.6%