Appweb Web Server Denial Of Service

Appweb Web Server Denial Of Service: Posted Mar 28, 2015; Authored by Matthew Daley; Appweb Web Server suffers from a denial of service vulnerability.; tags | exploit, web, denial of service; advisories | CVE-2014-9708; SHA-256 | e59a4ebe08e7c3f7777a2c603a71d5db8d059f0c0ece77091aadd4aa5da52401; Download | Favorite | View

Appweb Web Server Denial Of Service

Affected software: Appweb Web Server
CVE ID: CVE-2014-9708

Description: An HTTP request with a Range header of the form "Range:
x=," (ie. with an empty range value) will cause a null pointer
dereference, leading to a remotely-triggerable DoS.

Fixed versions: 4.6.6, 5.2.1
Bug entry: https://github.com/embedthis/appweb/issues/413
Fix: https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348
Reported by: Matthew Daley

- Matthew Daley

Top Authors In Last 30 Days

Red Hat 242 files
Ubuntu 52 files
Debian 22 files
LiquidWorm 15 files
Apple 9 files
Gentoo 8 files
Google Security Research 3 files
Alter Prime 3 files
Pierre Kim 2 files
Jann Horn 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,166)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,960)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,344)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,989)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

Appweb Web Server Denial Of Service

Appweb Web Server Denial Of Service

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Appweb Web Server Denial Of Service

Share This

Appweb Web Server Denial Of Service

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems