Description

lighttpd before 1.4.14 allows attackers to cause a denial of service (crash) via a request to a file whose mtime is 0, which results in a NULL pointer dereference.

Remediation

References

CVE-2007-1870

Related Vulnerabilities

Oracle Database Server CVE-2007-5515 Vulnerability (CVE-2007-5515)

WordPress Plugin PayPal WP Button Manager SQL Injection (0.1.1)

PostgreSQL Cryptographic Issues Vulnerability (CVE-2012-2143)

Adminer 4.6.2 file disclosure vulnerability

Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-3554)

Severity

High

Classification

CVE-2007-1870

Tags

Missing Update Known Vulnerabilities