Description

Microsoft IIS 5.0 and 5.1 allows remote attackers to cause a denial of service (CPU consumption) via an HTTP request with a Host header that contains a large number of "/" (forward slash) characters.

Remediation

References

CVE-2002-1908

Related Vulnerabilities

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4288)

WordPress Plugin Membership Simplified Arbitrary File Download (1.58)

PHP Other Vulnerability (CVE-2002-1783)

WordPress 3.7.x Cross-Site Request Forgery (3.7 - 3.7.28)

Perl Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2020-12723)

Severity

Medium

Classification

CVE-2002-1908

Tags

Missing Update Known Vulnerabilities