3 matches found
Juniper Embedthis GoAhead Denial Of Service Vulnerabilities (JSA10948)
The version of Junos OS installed on the remote host is prior to 12.3R12-S14, 12.3X48-D80, 15.1F6-S13, 15.1X49-D170, 15.1X53-D497, 16.1R4-S13, 16.2R2-S10, 17.1R3, 17.2R2-S7, 17.3R3-S5, 17.4R1-S7, or 18.1R3-S5. It is, therefore, affected by multiple vulnerabilities as referenced in the JSA10948...
CVE-2018-15505
An issue was discovered in Embedthis GoAhead before 4.0.1 and Appweb before 7.0.2. An HTTP POST request with a specially crafted "Host" header field may cause a NULL pointer dereference and thus cause a denial of service, as demonstrated by the lack of a trailing '' character in an IPv6 address...
CVE-2018-15505
CVE-2018-15505 describes a NULL pointer dereference inEmbedthis GoAhead (before 4.0.1) and Appweb (before 7.0.2) triggered by an HTTP POST with a specially crafted Host header, notably demonstrated by a missing trailing ‘]’ in IPv6 addresses, causing a denial of service. Affected products/version...