Lucene search
HistoryMar 02, 2009 - 10:30 p.m.
CVE-2009-0751
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
High
EPSS
0.189
Percentile
96.3%
Yaws before 1.80 allows remote attackers to cause a denial of service (memory consumption and crash) via a request with a large number of headers.
Affected configurations
Node
yawsyawsRange≤1.79
ORyawsyawsMatch1.50
ORyawsyawsMatch1.51
ORyawsyawsMatch1.52
ORyawsyawsMatch1.53
ORyawsyawsMatch1.54
ORyawsyawsMatch1.55
ORyawsyawsMatch1.56
ORyawsyawsMatch1.57
ORyawsyawsMatch1.58
ORyawsyawsMatch1.61
ORyawsyawsMatch1.62
ORyawsyawsMatch1.63
ORyawsyawsMatch1.64
ORyawsyawsMatch1.65
ORyawsyawsMatch1.66
ORyawsyawsMatch1.67
ORyawsyawsMatch1.68
ORyawsyawsMatch1.70
ORyawsyawsMatch1.71
ORyawsyawsMatch1.72
ORyawsyawsMatch1.73
ORyawsyawsMatch1.74
ORyawsyawsMatch1.75
ORyawsyawsMatch1.76
ORyawsyawsMatch1.77
ORyawsyawsMatch1.78
| Vendor | Product | Version | CPE |
|---|---|---|---|
| yaws | yaws | * | cpe:2.3:a:yaws:yaws:*:*:*:*:*:*:*:* |
| yaws | yaws | 1.50 | cpe:2.3:a:yaws:yaws:1.50:*:*:*:*:*:*:* |
| yaws | yaws | 1.51 | cpe:2.3:a:yaws:yaws:1.51:*:*:*:*:*:*:* |
| yaws | yaws | 1.52 | cpe:2.3:a:yaws:yaws:1.52:*:*:*:*:*:*:* |
| yaws | yaws | 1.53 | cpe:2.3:a:yaws:yaws:1.53:*:*:*:*:*:*:* |
| yaws | yaws | 1.54 | cpe:2.3:a:yaws:yaws:1.54:*:*:*:*:*:*:* |
| yaws | yaws | 1.55 | cpe:2.3:a:yaws:yaws:1.55:*:*:*:*:*:*:* |
| yaws | yaws | 1.56 | cpe:2.3:a:yaws:yaws:1.56:*:*:*:*:*:*:* |
| yaws | yaws | 1.57 | cpe:2.3:a:yaws:yaws:1.57:*:*:*:*:*:*:* |
| yaws | yaws | 1.58 | cpe:2.3:a:yaws:yaws:1.58:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2009-0751
2009-03-02 22:00:00
seebug
seebug
Yaws < 1.80 (multiple headers) Remote Denial of Service Exploit
2009-03-03 00:00:00
Yaws < 1.80 (multiple headers) Remote Denial of Service Exploit
2014-07-01 00:00:00
packetstorm
packetstorm
Yaws Denial Of Service
2009-03-05 00:00:00
openvas
openvas
Debian Security Advisory DSA 1740-1 (yaws)
2009-03-20 00:00:00
Debian: Security Advisory (DSA-1740-1)
2009-03-19 00:00:00
prion
prion
Design/Logic Flaw
2009-03-02 22:30:00
nessus
nessus
Debian DSA-1740-1 : yaws - denial of service
2009-03-16 00:00:00
debian
debian
[SECURITY] [DSA 1740-1] New yaws packages fix denial of service
2009-03-14 04:07:11
ubuntucve
ubuntucve
CVE-2009-0751
2009-03-02 00:00:00
zdt
zdt
Yaws < 1.80 (multiple headers) Remote Denial of Service Exploit
2009-03-03 00:00:00
exploitdb
exploitdb
Yaws < 1.80 - Multiple Headers Remote Denial of Service Vulnerabilities
2009-03-03 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1740-1] New yaws packages fix denial of service
2009-03-17 00:00:00
yaws Web server DoS
2009-03-17 00:00:00
exploitpack
exploitpack
Yaws 1.80 - Multiple Headers Remote Denial of Service Vulnerabilities
2009-03-03 00:00:00
debiancve
debiancve
CVE-2009-0751
2009-03-02 22:30:00
cve
cve
CVE-2009-0751
2009-03-02 22:30:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
High
EPSS
0.189
Percentile
96.3%
Related for NVD:CVE-2009-0751