Lucene search
FreeBSDD2B48D30-EA97-11DB-A802-000FEA2763CEHistoryDec 15, 2006 - 12:00 a.m.
lighttpd -- Remote DOS in CRLF parsing
2006-12-1500:00:00
vuxml.freebsd.org
15
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.222 Low
EPSS
Percentile
96.5%
Lighttpd SA:
If the connection aborts during parsing “\r\n\r\n” the server
might get into a infinite loop and use 100% of the CPU time.
lighttpd still responses to other requests. This can be repeated
until either the server limit for concurrent connections or file
descriptors is reached.
The bug was reported and fixed by Robert Jakabosky.
Related
ubuntucve
ubuntucve
CVE-2007-1869
2007-04-18 00:00:00
prion
prion
Design/Logic Flaw
2007-04-18 03:19:00
cvelist
cvelist
CVE-2007-1869
2007-04-18 02:20:00
nessus
nessus
FreeBSD : lighttpd -- Remote DOS in CRLF parsing (d2b48d30-ea97-11db-a802-000fea2763ce)
2007-04-19 00:00:00
GLSA-200705-07 : Lighttpd: Two Denials of Service
2007-05-10 00:00:00
Debian DSA-1303-1 : lighttpd - denial of service
2007-06-12 00:00:00
cve
cve
CVE-2007-1869
2007-04-18 03:19:00
openvas
openvas
FreeBSD Ports: lighttpd
2008-09-04 00:00:00
FreeBSD Ports: lighttpd
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200705-07 (lighttpd)
2008-09-24 00:00:00
debiancve
debiancve
CVE-2007-1869
2007-04-18 03:19:00
nvd
nvd
CVE-2007-1869
2007-04-18 03:19:00
debian
debian
[SECURITY] [DSA 1303-1] New lighttpd packages fix denial of service
2007-06-10 13:21:23
osv
osv
lighttpd - denial of service
2007-06-10 00:00:00
gentoo
gentoo
Lighttpd: Two Denials of Service
2007-05-07 00:00:00
securityvulns
securityvulns
liggttpd multiple denial of service conditions
2007-04-19 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.222 Low
EPSS
Percentile
96.5%
Related for D2B48D30-EA97-11DB-A802-000FEA2763CE