Appweb Web Server Denial Of Service

Appweb Web Server Denial Of Service: Posted Mar 28, 2015; Authored by Matthew Daley; Appweb Web Server suffers from a denial of service vulnerability.; tags | exploit, web, denial of service; advisories | CVE-2014-9708; SHA-256 | e59a4ebe08e7c3f7777a2c603a71d5db8d059f0c0ece77091aadd4aa5da52401; Download | Favorite | View

Appweb Web Server Denial Of Service

Affected software: Appweb Web Server
CVE ID: CVE-2014-9708

Description: An HTTP request with a Range header of the form "Range:
x=," (ie. with an empty range value) will cause a null pointer
dereference, leading to a remotely-triggerable DoS.

Fixed versions: 4.6.6, 5.2.1
Bug entry: https://github.com/embedthis/appweb/issues/413
Fix: https://github.com/embedthis/appweb/commit/7e6a925f5e86a19a7934a94bbd6959101d0b84eb#diff-7ca4d62c70220e0e226e7beac90c95d9L17348
Reported by: Matthew Daley

- Matthew Daley

Top Authors In Last 30 Days

Red Hat 229 files
indoushka 167 files
Jay Turla 150 files
Ubuntu 67 files
h00die 54 files
juan vazquez 43 files
sinn3r 41 files
H D Moore 31 files
Karn Ganeshen 23 files
Pedro Ribeiro 22 files

File Archives

Systems

AIX (430)
Apple (2,114)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,124)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (881)
iOS (389)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,237)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (16,845)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,852)
UNIX (9,456)
UnixWare (188)
Windows (6,772)
Other

Appweb Web Server Denial Of Service

Appweb Web Server Denial Of Service

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Appweb Web Server Denial Of Service

Share This

Appweb Web Server Denial Of Service

File Archive:

September 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems