CVE-2025-67445

CVE-2025-67445 affects TOTOLINK X5000R (v9.1.0cu.2415_B20250515) in the /cgi-bin/cstecgi.cgi CGI. The issue stems from reading CONTENT_LENGTH and calling malloc(CONTENT_LENGTH + 1) without proper bounds checks. A crafted large POST request can exhaust memory or cause a segmentation fault when the...

CVE-2019-18995

The HMISimulator component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier fails to validate the content-length field for HTTP requests, exposing HMISimulator to denial of service via crafted HTTP requests manipulating the content-length setting...

EUVD-2022-1793

Malicious code in bioql PyPI...

EUVD-2023-38288

Malicious code in bioql PyPI...

GHSA-287X-9RFF-QVCG Rust Web Push is vulnerable to a DoS attack via a large integer in a Content-Length header

The web-push crate before 0.10.4 for Rust allows a denial of service memory consumption in the built-in clients via a large integer in a Content-Length header. The patch was initially made available in version 0.10.3, but version 0.10.3 has since been yanked...

CVE-2022-42252

A flaw was found in Apache Tomcat. If the server is configured to ignore invalid HTTP headers, the server does not reject a request containing an invalid content-length header, making it vulnerable to a request smuggling attack...

Denial Of Service (DoS)

keycloak is vulnerable to denial of service DoS. The vulnerability exists through multiple simultaneous requests with a Content-Length header value greater than actual byte count of request body...

Huawei EulerOS: Security Advisory for http-parser (EulerOS-SA-2019-2238)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

golang: HTTP request smuggling in net/http library

HTTP-request vulnerabilities have been found in the Golang net/http and net/textproto libraries. Request headers with double Content-Length fields do not generate a 400 error the second field is ignored, and invalid fields are parsed as valid for example, "Content Length:" with a space in the...

CVE-2003-1084

Monit 1.4 to 4.1 allows remote attackers to cause a denial of service daemon crash via an HTTP POST request with a negative Content-Length field...

CVE-2004-0245

Web Crossing 4.x and 5.x allows remote attackers to cause a denial of service crash by sending a HTTP POST request with a large or negative Content-Length, which causes an integer divide-by-zero...

GoAhead DoS

Invalid Content-Length processing in POST request...

GetWare Web Server Component - Content-Length Value Remote Denial of Service

source: https://www.securityfocus.com/bid/9451/info The GetWare Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the affected web server receives malicious HTTP requests that contain negative...

GetWare Web Server Component - Content-Length Value Remote Denial of Service

GetWare Web Server Component - Content-Length Value Remote Denial of Service source: https://www.securityfocus.com/bid/9451/info The GetWare Web Server component has been reported prone to a remote denial of service vulnerability. It has been reported that the issue will present itself when the...

[Full-Disclosure] Monit 4.1 HTTP interface multiple security vulnerabilities

S-Quadra Advisory 2003-11-24 Topic: Monit 4.1 HTTP interface Multiple Security Vulnerabilities Severity: High Vendor URL: http://www.tildeslash.com/monit/ Advisory URL: http://www.s-quadra.com/advisories/Adv-20031124.txt Release date: 22 Nov 2003 1. DESCRIPTION Monit...

Savant Web Server 3.1 - Malformed Content-Length Denial of Service

Savant Web Server 3.1 - Malformed Content-Length Denial of Service source: https://www.securityfocus.com/bid/5707/info Savant Webserver is prone to a denial of service attack, when processing a negative integer located in a users Content-Length value. It should be noted that versions below 3.1 ma...

Savant Web Server 3.1 - Malformed Content-Length Denial of Service

source: https://www.securityfocus.com/bid/5707/info Savant Webserver is prone to a denial of service attack, when processing a negative integer located in a users Content-Length value. It should be noted that versions below 3.1 may also be vulnerable to this issue. GET / HTTP/1.0 Content-Length: ...

Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass

Trend Micro Interscan VirusWall 3.53.6 - Content-Length Scan Bypass // source: https://www.securityfocus.com/bid/4265/info Trend Micro InterScan VirusWall is a high performance internet gateway virus scanning package. It is capable of scanning incoming content over HTTP, SMTP and FTP for viruses...