Lucene search
Ubuntu.comUB:CVE-2007-3946HistoryJul 24, 2007 - 12:00 a.m.
CVE-2007-3946
2007-07-2400:00:00
ubuntu.com
ubuntu.com
8
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.109 Low
EPSS
Percentile
95.1%
mod_auth (http_auth.c) in lighttpd before 1.4.16 allows remote attackers to
cause a denial of service (daemon crash) via unspecified vectors involving
(1) a memory leak, (2) use of md5-sess without a cnonce, (3) base64 encoded
strings, and (4) trailing whitespace in the Auth-Digest header.
Related
prion
prion
Denial of service
2007-07-24 00:30:00
cve
cve
CVE-2007-3946
2007-07-24 00:30:00
debiancve
debiancve
CVE-2007-3946
2007-07-24 00:30:00
openvas
openvas
Debian Security Advisory DSA 1362-1 (lighttpd)
2008-01-17 00:00:00
Debian Security Advisory DSA 1362-1 (lighttpd)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200708-11 (lighttpd)
2008-09-24 00:00:00
debian
debian
[SECURITY] [DSA 1362-1] New lighttpd packages fix several vulnerabilities
2007-08-29 00:00:00
osv
osv
lighttpd - several vulnerabilities
2007-08-29 00:00:00
nessus
nessus
lighttpd < 1.4.16 Multiple Vulnerabilities
2018-02-06 00:00:00
GLSA-200708-11 : Lighttpd: Multiple vulnerabilities
2007-08-21 00:00:00
openSUSE 10 Security Update : lighttpd (lighttpd-3985)
2007-10-17 00:00:00
gentoo
gentoo
Lighttpd: Multiple vulnerabilities
2007-08-16 00:00:00
securityvulns
securityvulns
[ GLSA 200708-11 ] Lighttpd: Multiple vulnerabilities
2007-08-17 00:00:00
Lighttpd multiple security vulnerabilities
2007-08-17 00:00:00
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.109 Low
EPSS
Percentile
95.1%
Related for UB:CVE-2007-3946