Lucene search
K

9 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.183 views

Node.js HTTP Pipelining Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Node.js HTTP Pipelining Denial of Service', 'Description' = %q This module exploits a Denial of Service DoS condition in the HTTP parser of Node....

5CVSS7AI score0.3722EPSS
Exploits3
Circl
Circl
added 2018/05/29 3:50 p.m.10 views

CVE-2013-4450

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/nodejspipelining.rb 2025-02-06 03:13:41+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:19+00:00| seen|...

5CVSS7.5AI score0.3722EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.37 views

openSUSE Security Update : nodejs (openSUSE-SU-2013:1863-1)

This update fixes the following security issue with nodejs : - fix CVE-2013-4450: nodejs: HTTP Pipelining DoS bnc846808 CVE-2013-4450-v0.10.x.patch: contains the fix %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

5CVSS8AI score0.3722EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2013/10/29 12:0 a.m.40 views

Fedora Update for libuv FEDORA-2013-19491

Check for the Version of libuv OpenVAS Vulnerability Test Fedora Update for libuv FEDORA-2013-19491 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

5CVSS6.4AI score0.3722EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2013/10/29 12:0 a.m.21 views

Fedora Update for nodejs FEDORA-2013-19491

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.3722EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2013/10/29 12:0 a.m.28 views

Fedora Update for libuv FEDORA-2013-19497

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.3722EPSS
Exploits3References2
Metasploit
Metasploit
added 2013/10/22 7:12 p.m.59 views

Node.js HTTP Pipelining Denial of Service

This module exploits a Denial of Service DoS condition in the HTTP parser of Node.js versions released before 0.10.21 and 0.8.26. The attack sends many pipelined HTTP requests on a single connection, which causes unbounded memory allocation when the client does not read the responses. This module...

5CVSS0.5AI score0.3722EPSS
Exploits3
Node JS Blog
Node JS Blog
added 2013/10/22 12:0 a.m.42 views

DoS Vulnerability (fixed in Node v0.8.26 and v0.10.21)

DoS Vulnerability fixed in Node v0.8.26 and v0.10.21 Node.js is vulnerable to a denial of service attack when a client sends many pipelined HTTP requests on a single connection, and the client does not read the responses from the connection. We recommend that anyone using Node.js v0.8 or v0.10 to...

5CVSS7.5AI score0.3722EPSS
Exploits3
CVE
CVE
added 2013/10/21 5:0 p.m.90 views

CVE-2013-4450

CVE-2013-4450 affects Node.js HTTP server in 0.10.x before 0.10.21 and 0.8.x before 0.8.26. The vulnerability allows a remote attacker to cause a denial of service by sending a large number of pipelined HTTP requests without reading responses, leading to memory and CPU consumption and possible ex...

5CVSS6.3AI score0.3722EPSS
Exploits3References10Affected Software1
Rows per page
Query Builder