CVE-2004-2117

Опубликовано: 24 янв. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Tiny Server 1.1 allows remote attackers to cause a denial of service (crash) via malformed HTTP requests such as (1) a GET request without the HTTP version (HTTP/1.1), or (2) a request without GET or the HTTP version.

Ссылки

http://marc.info/?l=bugtraq&m=107496530806730&w=2
http://secunia.com/advisories/10707
http://www.autistici.org/fdonato/advisory/tinyServer1.1%5B1.0.5%5D-adv.txt
http://www.osvdb.org/3709
http://www.securityfocus.com/bid/9485
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/14928
http://marc.info/?l=bugtraq&m=107496530806730&w=2
http://secunia.com/advisories/10707
http://www.autistici.org/fdonato/advisory/tinyServer1.1%5B1.0.5%5D-adv.txt
http://www.osvdb.org/3709
http://www.securityfocus.com/bid/9485
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/14928

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tinyserver:tinyserver:1.1:*:*:*:*:*:*:*

EPSS

Процентиль: 92%

0.07667

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-mr95-v55h-pp97

github

почти 4 года назад