CVE-2025-67445

CVE-2025-67445 affects TOTOLINK X5000R (v9.1.0cu.2415_B20250515) in the /cgi-bin/cstecgi.cgi CGI. The issue stems from reading CONTENT_LENGTH and calling malloc(CONTENT_LENGTH + 1) without proper bounds checks. A crafted large POST request can exhaust memory or cause a segmentation fault when the...

CVE-2019-18995

The HMISimulator component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier fails to validate the content-length field for HTTP requests, exposing HMISimulator to denial of service via crafted HTTP requests manipulating the content-length setting...

EUVD-2022-1793

Malicious code in bioql PyPI...

EUVD-2023-38288

Malicious code in bioql PyPI...

GHSA-287X-9RFF-QVCG Rust Web Push is vulnerable to a DoS attack via a large integer in a Content-Length header

The web-push crate before 0.10.4 for Rust allows a denial of service memory consumption in the built-in clients via a large integer in a Content-Length header. The patch was initially made available in version 0.10.3, but version 0.10.3 has since been yanked...

CVE-2022-42252

A flaw was found in Apache Tomcat. If the server is configured to ignore invalid HTTP headers, the server does not reject a request containing an invalid content-length header, making it vulnerable to a request smuggling attack...

Denial Of Service (DoS)

keycloak is vulnerable to denial of service DoS. The vulnerability exists through multiple simultaneous requests with a Content-Length header value greater than actual byte count of request body...

Huawei EulerOS: Security Advisory for http-parser (EulerOS-SA-2019-2238)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

golang: HTTP request smuggling in net/http library

HTTP-request vulnerabilities have been found in the Golang net/http and net/textproto libraries. Request headers with double Content-Length fields do not generate a 400 error the second field is ignored, and invalid fields are parsed as valid for example, "Content Length:" with a space in the...

CVE-2003-1084

Monit 1.4 to 4.1 allows remote attackers to cause a denial of service daemon crash via an HTTP POST request with a negative Content-Length field...

CVE-2004-0245

Web Crossing 4.x and 5.x allows remote attackers to cause a denial of service crash by sending a HTTP POST request with a large or negative Content-Length, which causes an integer divide-by-zero...

GoAhead DoS

Invalid Content-Length processing in POST request...

GetWare Web Server Component - Content-Length Value Remote Denial of Service

GetWare Web Server Component - Content-Length Value Remote Denial of Service source: https://www.securityfocus.com/bid/9451/info The GetWare Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the...

GetWare Web Server Component - Content-Length Value Remote Denial of Service

source: https://www.securityfocus.com/bid/9451/info The GetWare Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the affected web server receives malicious HTTP requests that contain negative...

[Full-Disclosure] Monit 4.1 HTTP interface multiple security vulnerabilities

S-Quadra Advisory 2003-11-24 Topic: Monit 4.1 HTTP interface Multiple Security Vulnerabilities Severity: High Vendor URL: http://www.tildeslash.com/monit/ Advisory URL: http://www.s-quadra.com/advisories/Adv-20031124.txt Release date: 22 Nov 2003 1. DESCRIPTION Monit...

Savant Web Server 3.1 - Malformed Content-Length Denial of Service

Savant Web Server 3.1 - Malformed Content-Length Denial of Service source: https://www.securityfocus.com/bid/5707/info Savant Webserver is prone to a denial of service attack, when processing a negative integer located in a users Content-Length value. It should be noted that versions below 3.1 ma...

Savant Web Server 3.1 - Malformed Content-Length Denial of Service

source: https://www.securityfocus.com/bid/5707/info Savant Webserver is prone to a denial of service attack, when processing a negative integer located in a users Content-Length value. It should be noted that versions below 3.1 may also be vulnerable to this issue. GET / HTTP/1.0 Content-Length: ...

Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass

Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass // source: https://www.securityfocus.com/bid/4265/info Trend Micro InterScan VirusWall is a high performance internet gateway virus scanning package. It is capable of scanning incoming content over HTTP, SMTP and FTP for viruses...