Description

lighttpd 1.4.12 and 1.4.13 allows remote attackers to cause a denial of service (cpu and resource consumption) by disconnecting while lighttpd is parsing CRLF sequences, which triggers an infinite loop and file descriptor consumption.

Remediation

References

CVE-2007-1869

Related Vulnerabilities

Sqlite NULL Pointer Dereference Vulnerability (CVE-2019-19880)

WordPress Plugin bodi0`s Bots visits counter Cross-Site Scripting (0.8.1)

Moodle Other Vulnerability (CVE-2007-1429)

Oracle Application Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-0275)

WordPress 4.2.x Multiple Vulnerabilities (4.2 - 4.2.14)

Severity

Medium

Classification

CVE-2007-1869

Tags

Missing Update Known Vulnerabilities