CVE-2004-1973

Опубликовано: 27 апр. 2004

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

DiGi Web Server allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request that contains a large number of / (slash) characters, which consumes resources when DiGi converts the slashes to \ (backslash) characters.

Ссылки

http://marc.info/?l=bugtraq&m=108311170018203&w=2
http://secunia.com/advisories/11490
Patch
Vendor Advisory
http://securitytracker.com/alerts/2004/Apr/1009957.html
http://sourceforge.net/project/shownotes.php?release_id=234261
Patch
http://www.autistici.org/fdonato/advisory/DiGiWwwServerC1-adv.txt
http://www.osvdb.org/5702
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/10228
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15987
http://marc.info/?l=bugtraq&m=108311170018203&w=2
http://secunia.com/advisories/11490
Patch
Vendor Advisory
http://securitytracker.com/alerts/2004/Apr/1009957.html
http://sourceforge.net/project/shownotes.php?release_id=234261
Patch
http://www.autistici.org/fdonato/advisory/DiGiWwwServerC1-adv.txt
http://www.osvdb.org/5702
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/bid/10228
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15987

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:digi:www_server:compieuw:*:*:*:*:*:*:*

cpe:2.3:a:digi:www_server:compieuw:beta1:*:*:*:*:*:*

cpe:2.3:a:digi:www_server:compieuw:beta2:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.10459

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-c3rf-282h-rx6r

github

почти 4 года назад