Описание
A flaw was found in darkhttpd. Invalid error handling allows remote attackers to cause denial-of-service by accessing a file with a large modification date. The highest threat from this vulnerability is to system availability.
Ссылки
- Issue TrackingThird Party Advisory
- Issue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.13-1 (включая)
cpe:2.3:a:unix4lyfe:darkhttpd:*:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00471
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-755
CWE-755
Связанные уязвимости
CVSS3: 7.5
debian
почти 4 года назад
A flaw was found in darkhttpd. Invalid error handling allows remote at ...
CVSS3: 7.5
github
почти 4 года назад
A flaw was found in darkhttpd. Invalid error handling allows remote attackers to cause denial-of-service by accessing a file with a large modification date. The highest threat from this vulnerability is to system availability.
EPSS
Процентиль: 64%
0.00471
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-755
CWE-755