15 matches found
UBUNTU-CVE-2026-2443
A flaw was identified in libsoup, a widely used HTTP library in GNOME-based systems. When processing specially crafted HTTP Range headers, the library may improperly validate requested byte ranges. In certain build configurations, this could allow a remote attacker to access portions of server...
CVE-2026-2443 Libsoup: out-of-bounds read in libsoup handle_partial_get() leading to heap information disclosure
A flaw was identified in libsoup, a widely used HTTP library in GNOME-based systems. When processing specially crafted HTTP Range headers, the library may improperly validate requested byte ranges. In certain build configurations, this could allow a remote attacker to access portions of server...
EUVD-2008-7125
Malware in sbrugna...
Cisco Secure Web Appliance Range Request Bypass (cisco-sa-swa-range-bypass-2BsEHYSu)
According to its self-reported version, Cisco Secure Web Appliance Range Request Bypass is affected by a vulnerability. - A vulnerability in a policy-based Cisco Application Visibility and Control AVC implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an...
CVE-2025-20183
A vulnerability in a policy-based Cisco Application Visibility and Control AVC implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an unauthenticated, remote attacker to evade the antivirus scanner and download a malicious file onto an endpoint. The vulnerability i...
PT-2025-5708 · Cisco · Cisco Secure Web Appliance +1
Name of the Vulnerable Software and Affected Versions: Cisco Secure Web Appliance affected versions not specified Description: A vulnerability in the policy-based Cisco Application Visibility and Control AVC implementation of Cisco AsyncOS Software for Cisco Secure Web Appliance could allow an...
Rack Resource Management Error Vulnerability
Rack is a modular Ruby web server interface. A resource management error vulnerability exists in Rack versions prior to 3.0.9.1, 2.2.8.1, and 2.2.8.1, which stems from a crafted Range header that may cause the server to respond abnormally, resulting in a denial of service...
Security Bulletin: Potential security exposure with IBM HTTP Server 8.0 and earlier (PM46234) (CVE-2011-3192)
Summary Crafted range requests can result in potential denial of service with IBM HTTP Server IHS. Vulnerability Details Potential denial of service from attack using crafted range requests CVE Reference: CVE-2011-3192. Affected Products and Versions Affected: IBM HTTP Server IHS Versions 2.0...
Design/Logic Flaw
HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service crash via a request with crafted "Range headers with unidentifiable byte-range values."...
USN-2327-1 squid3 vulnerability
Matthew Daley discovered that Squid 3 did not properly perform input validation in request parsing. A remote attacker could send crafted Range requests to cause a denial of service...
Server side request forgery (ssrf)
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service assertion failure via a crafted range request, related to state management...
CVE-2014-0128
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service assertion failure via a crafted range request, related to state management...
Default credentials
Galileo Students Team Weborf before 0.12.1 allows remote attackers to cause a denial of service crash via a crafted Range header...
CVE-2010-2262
Weborf webserver (Galileo Students Team Weborf) is affected by a Denial of Service in versions before 0.12.1. The vulnerability is triggered by a crafted Range header, causing the server to crash. The issue is documented in multiple sources (e.g., Weborf
CVE-2010-2262
Galileo Students Team Weborf before 0.12.1 allows remote attackers to cause a denial of service crash via a crafted Range header...