593 matches found
CVE-2004-0492
Heap-based buffer overflow in proxyutil.c for modproxy in Apache 1.3.25 to 1.3.31 allows remote attackers to cause a denial of service process crash and possibly execute arbitrary code via a negative Content-Length HTTP header field, which causes a large amount of data to be copied...
Web Crossing Web Server 4.05.0 Component - Remote Denial of Service
Web Crossing Web Server 4.05.0 Component - Remote Denial of Service source: https://www.securityfocus.com/bid/9576/info The Web Crossing Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the...
Web Crossing 4.x/5.x Denial of Service Vulnerability
Web Crossing 4.x/5.x Denial of Service Vulnerability Credit: Author : Peter Winter-Smith Software: Package : Web Crossing Versions : 4.x/5.x Vendor : WebCrossing, Inc. Vendor Url : http://www.webcrossing.com/ Vulnerability: Bug Type : Denial of Service Severity : Less Critical 1. Description of...
Web Crossing Web Server 4.0/5.0 Component - Remote Denial of Service
source: https://www.securityfocus.com/bid/9576/info The Web Crossing Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the affected web server receives a malicious HTTP request that contains...
webxdos.txt
Web Crossing 4.x/5.x Denial of Service Vulnerability Credit: Author : Peter Winter-Smith Software: Package : Web Crossing Versions : 4.x/5.x Vendor : WebCrossing, Inc. Vendor Url : http://www.webcrossing.com/ Vulnerability: Bug Type : Denial of Service Severity : Less Critical 1. Description of...
CVE-2003-1198
connection.c in Cherokee web server before 0.4.6 allows remote attackers to cause a denial of service via an HTTP POST request without a Content-Length header field...
Monkey HTTP Daemon (monkeyd) Post_Method Function Crafted Content-Length Header DoS
The remote Monkey Web Server crashes when it receives an incorrect POST command with an empty 'Content-Length:' field. TRUSTED...
CVE-2002-1496
Heap-based buffer overflow in Null HTTP Server 0.5.0 and earlier allows remote attackers to execute arbitrary code via a negative value in the Content-Length HTTP header...
CVE-2002-1663
The PostMethod function in method.c for Monkey HTTP Daemon before 0.5.1 allows remote attackers to cause a denial of service crash via a POST request with an invalid or missing Content-Length header value...
CVE-2002-2258
Moby NetSuite allows remote attackers to cause a denial of service crash via an HTTP POST request with a 1 large integer or 2 non-numeric value in the Content-Length header, which causes an access violation after a failed atoi function call...
Null httpd Content-Length Header Handling Remote Overflow
The NullLogic Null HTTPd web server crashed when sent an invalid POST HTTP request with a negative Content-Length field. An attacker may exploit this flaw to disable your service or even execute arbitrary code on your system. C Tenable Network Security, Inc. References: Date: Sun, 22 Sep 2002...
Monkey HTTP Server 0.4/0.5 - Invalid POST Denial of Service
source: https://www.securityfocus.com/bid/6096/info A denial of service vulnerability has been reported for Monkey HTTP server. The vulnerability is due to inadequate checks being performed when decoding POST requests. An attacker can exploit this vulnerability by issuing a POST request with an...
CVE-2002-0440
Trend Micro InterScan VirusWall HTTP proxy 3.6 with the "Skip scanning if Content-length equals 0" option enabled allows malicious web servers to bypass content scanning via a Content-length header set to 0, which is often ignored by HTTP clients...