CVE-2007-3947

Loading...

General

Score:5.8/10.0
Severity:Medium
Category:N/A
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:None
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Published on 24/07/07 - Updated on 15/10/18

Description

request.c in lighttpd 1.4.15 allows remote attackers to cause a denial of service (daemon crash) by sending an HTTP request with duplicate headers, as demonstrated by a request containing two Location header lines, which results in a segmentation fault.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2007-3947

Exploits

Exploit-DBEDB-30322
SecurityFocusBID-24967

Relative technologies

VendorProduct
lighttpdlighttpd

Share this vulnerability with:

Twitter Facebook LinkedIn Mail