Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.900268
Kategorie:Denial of Service
Titel:Mongoose Webserver Content-Length Denial of Service Vulnerability
Zusammenfassung:This host is running Mongoose Webserver and is prone to denial; of service vulnerability.
Beschreibung:Summary:
This host is running Mongoose Webserver and is prone to denial
of service vulnerability.

Vulnerability Insight:
The flaw is due to the way Mongoose webserver handles request
with a big nagitive 'Content-Length' causing application crash.

Vulnerability Impact:
Successful exploitation will let the remote unauthenticated
attackers to cause a denial of service or possibly execute arbitrary code.

Affected Software/OS:
Mongoose webserver version 2.11 and prior.

Solution:
No known solution was made available for at least one year since the disclosure
of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer
release, disable respective features, remove the product or replace the product by another one.

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Querverweis: BugTraq ID: 45602
CopyrightCopyright (C) 2010 SecPod

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.