ID OSVDB:3617 Type osvdb Reporter Luigi Auriemma(aluigi@autistici.org) Modified 2003-09-23T00:00:00
Description
Vulnerability Description
GoAhead WebServer contains a flaw that may allow a remote denial of service. The issue is triggered when sending a HTTP POST request with a malformed Content-Length header, which causes the application to crash resulting in a loss of availability.
Solution Description
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.
Short Description
GoAhead WebServer contains a flaw that may allow a remote denial of service. The issue is triggered when sending a HTTP POST request with a malformed Content-Length header, which causes the application to crash resulting in a loss of availability.
References:
Vendor URL: http://216.211.138.77/webserver/webserver.htm
Secunia Advisory ID:10678
Other Advisory URL: http://aluigi.altervista.org/adv/goahead-adv1.txt
Other Advisory URL: http://aluigi.altervista.org/adv/goahead-neg-adv.txt
Other Advisory URL: http://archives.neohapsis.com/archives/bugtraq/2004-01/0140.html
ISS X-Force ID: 14890
Bugtraq ID: 9452
{"edition": 1, "title": "GoAhead WebServer Malformed Content-Length DoS", "bulletinFamily": "software", "published": "2003-09-23T00:00:00", "lastseen": "2017-04-28T13:19:58", "history": [], "modified": "2003-09-23T00:00:00", "reporter": "Luigi Auriemma(aluigi@autistici.org)", "hash": "19ea27b1c67b16e47778593154a912057af262007be211146a7fdc3eff592374", "viewCount": 2, "href": "https://vulners.com/osvdb/OSVDB:3617", "description": "## Vulnerability Description\nGoAhead WebServer contains a flaw that may allow a remote denial of service. The issue is triggered when sending a HTTP POST request with a malformed Content-Length header, which causes the application to crash resulting in a loss of availability.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\nGoAhead WebServer contains a flaw that may allow a remote denial of service. The issue is triggered when sending a HTTP POST request with a malformed Content-Length header, which causes the application to crash resulting in a loss of availability.\n## References:\nVendor URL: http://216.211.138.77/webserver/webserver.htm\n[Secunia Advisory ID:10678](https://secuniaresearch.flexerasoftware.com/advisories/10678/)\nOther Advisory URL: http://aluigi.altervista.org/adv/goahead-adv1.txt\nOther Advisory URL: http://aluigi.altervista.org/adv/goahead-neg-adv.txt\nOther Advisory URL: http://archives.neohapsis.com/archives/bugtraq/2004-01/0140.html\nISS X-Force ID: 14890\nBugtraq ID: 9452\n", "affectedSoftware": [{"name": "WebServer", "version": "2.1.3", "operator": "eq"}, {"name": "WebServer", "version": "2.1.8", "operator": "eq"}], "type": "osvdb", "hashmap": [{"key": "affectedSoftware", "hash": "5930b9384adc4c0a1ba34c16acfecefd"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "46d2b610da915353cdf99138e4d82f8e"}, {"key": "href", "hash": "17655fb899977504b7bf5fb477bce256"}, {"key": "modified", "hash": "495bc7dc6e926cf281a1d77f6d78c22f"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "495bc7dc6e926cf281a1d77f6d78c22f"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "2155716932a7db74a347d98b88a5de75"}, {"key": "title", "hash": "774ca08db89d81307436a24efd70f0ab"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}], "references": [], "objectVersion": "1.2", "enchantments": {"score": {"vector": "NONE", "value": 5.0}, "vulnersScore": 5.0}, "cvss": {"vector": "NONE", "score": 0.0}, "cvelist": [], "id": "OSVDB:3617"}
