64 matches found
CVE-2022-38381
An improper handling of malformed request vulnerability CWE-228 exists in FortiADC 5.0 all versions, 6.0.0 all versions, 6.1.0 all versions, 6.2.0 through 6.2.3, and 7.0.0 through 7.0.2. This may allow a remote attacker without privileges to bypass some Web Application Firewall WAF protection suc...
CVE-2022-24321
A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists that could cause Denial of Service against the Geo SCADA server when receiving a malformed HTTP request. Affected Product: ClearSCADA All Versions, EcoStruxure Geo SCADA Expert 2019 All Versions, EcoStruxure Geo...
Linksys WRH54G 1.1.3 - Wireless-G Router Malformed HTTP Request Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/29570/info Linksys WRH54G Wireless-G Router is prone to a denial-of-service vulnerability because it fails to adequately handle malformed HTTP requests. As a result, memory becomes corrupted and the device's HTTP service...
PHPOutsourcing Zorum 3.4 Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8396/info A vulnerability has been reported in Zorum message board software that allows a remote attacker to send a malformed HTTP request resulting in a disclosure of the installation path. This issue may allow an attack...
Snowblind Web Server 1.0/1.1 Malformed HTTP Request Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7617/info A denial of service vulnerability has been reported for Snowblind. The vulnerability will cause the web server to crash when processing a malformed HTTP request. http://localhost//...
Moderate: Red Hat Security Advisory: httpd security and bug fix update
Updated httpd packages that fix multiple security issues and one bug are now available for JBoss Enterprise Web Server 1.0.2 for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS...
httpd: mod_proxy_ajp remote temporary DoS
The modproxyajp module in the Apache HTTP Server before 2.2.21, when used with modproxybalancer in certain configurations, allows remote attackers to cause a denial of service temporary "error state" in the backend server via a malformed HTTP request...
CVE-2011-3348
The modproxyajp module in the Apache HTTP Server before 2.2.21, when used with modproxybalancer in certain configurations, allows remote attackers to cause a denial of service temporary "error state" in the backend server via a malformed HTTP request...
CVE-2011-3348
The modproxyajp module in the Apache HTTP Server before 2.2.21, when used with modproxybalancer in certain configurations, allows remote attackers to cause a denial of service temporary "error state" in the backend server via a malformed HTTP request...
HTTP Server Parameter Pollution
HTTP Parameter Pollution HPP is a hacking technique. HPP attacks allow the attacker to override or add HTTP GET/POST parameters by injecting query string delimiters. This is an input validation vulnerability. Input validation flaws are caused by unsanitized data flows between the front-end and th...
Microsoft IIS Remote DoS .DLL Url exploit
Microsoft IIS Remote DoS .DLL Url exploit Advisory Name Microsoft IIS Remote Denial of Service DoS .DLL Url exploit Release Date 16. December 2005 Vulnerable Microsoft® Internet Information Server® V5.1 Not vulnerable Microsoft® Internet Information Server® V5.0 Microsoft® Internet Information...
Ruby cgi.rb Malformed HTTP Request CPU Utilization DoS
The 'cgi.rb' CGI is installed. Some versions is vulnerable to remote denial of service. By sending a specially crafted HTTP POST request, a malicious user can force the remote host to consume a large amount of CPU resources. Warning : Nessus solely relied on the presence of this CGI, it did not...
Caudium DoS
Malfromed HTTP request causes server to crash...
CVE-2004-0276
The getrealstring function in Monkey HTTP Daemon monkeyd 0.8.1 and earlier allows remote attackers to cause a denial of service crash via an HTTP request with a sequence of "%" characters and a missing Host field...
Cerbere Proxy Server 1.2 - Long Host Header Field Remote Denial of Service
Cerbere Proxy Server 1.2 - Long Host Header Field Remote Denial of Service source: https://www.securityfocus.com/bid/11085/info Cerbère Proxy server is reported prone to a remote denial of service vulnerability. This issue presents itself when a remote attacker sends a malformed HTTP GET request...
Cerbere Proxy Server 1.2 - Long Host Header Field Remote Denial of Service
source: https://www.securityfocus.com/bid/11085/info Cerbère Proxy server is reported prone to a remote denial of service vulnerability. This issue presents itself when a remote attacker sends a malformed HTTP GET request to the server. A remote attacker may cause a denial of service condition i...
DiGi WWW Server 1 - Remote Denial of Service
DiGi WWW Server 1 - Remote Denial of Service source: https://www.securityfocus.com/bid/10228/info The DiGi WWW Server has been reported to contain a remote denial of service vulnerability. It has been reported that when the server receives a malformed HTTP GET request, the web server process will...
DiGi WWW Server 1 - Remote Denial of Service
source: https://www.securityfocus.com/bid/10228/info The DiGi WWW Server has been reported to contain a remote denial of service vulnerability. It has been reported that when the server receives a malformed HTTP GET request, the web server process will consume large amounts of CPU resources. Sinc...
Hand-Crafted Software FreeProxy 3.53.6 - FreeWeb CreateFile Function Denial of Service
Hand-Crafted Software FreeProxy 3.53.6 - FreeWeb CreateFile Function Denial of Service source: https://www.securityfocus.com/bid/9390/info It has been reported that FreeWeb server of FreeProxy may be prone to a denial of service vulnerability that may allow an attacker to crash the server process...
CVE-2003-1263
ICAL.EXE in iCal 3.7 allows remote attackers to cause a denial of service crash via a malformed HTTP request, possibly due to an invalid method name...