Summary
Monkey HTTP Daemon is prone to a denial-of-service vulnerability.
Remote attackers can exploit this issue to cause the application to crash, denying service to legitimate users.
Versions prior to Monkey HTTP Daemon 0.9.3 are vulnerable.
Solution
Updates are available
please see the references for more information.
References
- http://census-labs.com/news/2009/12/14/monkey-httpd/
- http://groups.google.com/group/monkeyd/browse_thread/thread/055b4e9b83973861/c0e013d166ae1eb3?show_docid=c0e013d166ae1eb3
- http://monkeyd.sourceforge.net/
- http://www.securityfocus.com/archive/1/508442
- http://www.securityfocus.com/bid/37307
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C
Related Vulnerabilities
- Zeus Web Server 'SSL2_CLIENT_HELLO' Remote Buffer Overflow Vulnerability
- HP System Management Homepage Multiple Vulnerabilities
- IBM WebSphere Application Server WS-Security Policy Unspecified vulnerability
- Microsoft IIS ASP Stack Based Buffer Overflow Vulnerability
- Savant Web Server Remote Buffer Overflow Vulnerability