Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-16789

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libhttp/url.c in shellinabox through 2.20 has an implementation flaw in the HTTP request parsing logic. By sending a crafted multipart/form-data HTTP request, a...

7.8CVSS7.2AI score0.05986EPSS
Exploits3References2
OSV
OSV
added 2019/03/21 4:0 p.m.17 views

CVE-2018-16789

libhttp/url.c in shellinabox through 2.20 has an implementation flaw in the HTTP request parsing logic. By sending a crafted multipart/form-data HTTP request, an attacker could exploit this to force shellinaboxd into an infinite loop, exhausting available CPU resources and taking the service down...

7.5CVSS6.6AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2019/03/21 4:0 p.m.22 views

CVE-2018-16789

libhttp/url.c in shellinabox through 2.20 has an implementation flaw in the HTTP request parsing logic. By sending a crafted multipart/form-data HTTP request, an attacker could exploit this to force shellinaboxd into an infinite loop, exhausting available CPU resources and taking the service down...

7.8CVSS7.1AI score0.05986EPSS
Exploits3References2
Cvelist
Cvelist
added 2019/03/17 6:36 p.m.26 views

CVE-2018-16789

libhttp/url.c in shellinabox through 2.20 has an implementation flaw in the HTTP request parsing logic. By sending a crafted multipart/form-data HTTP request, an attacker could exploit this to force shellinaboxd into an infinite loop, exhausting available CPU resources and taking the service down...

7.3AI score0.05986EPSS
Exploits3References4
CVE
CVE
added 2019/03/17 6:36 p.m.97 views

CVE-2018-16789

CVE-2018-16789 affects shellinabox up to version 2.20, where libhttp/url.c contains a flaw in HTTP request parsing. A crafted multipart/form-data request can cause shellinaboxd to enter an infinite loop, exhausting CPU resources and potentially taking the service down. The available documents des...

7.8CVSS7.3AI score0.05986EPSS
Exploits3References4Affected Software1
Debian CVE
Debian CVE
added 2019/03/17 6:36 p.m.21 views

CVE-2018-16789

libhttp/url.c in shellinabox through 2.20 has an implementation flaw in the HTTP request parsing logic. By sending a crafted multipart/form-data HTTP request, an attacker could exploit this to force shellinaboxd into an infinite loop, exhausting available CPU resources and taking the service down...

7.8CVSS7.3AI score0.05986EPSS
Exploits3
Rows per page
Query Builder