Description

connections.c in lighttpd before 1.4.16 might accept more connections than the configured maximum, which allows remote attackers to cause a denial of service (failed assertion) via a large number of connection attempts.

Remediation

References

CVE-2007-3948

Related Vulnerabilities

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-0214)

TYPO3 URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2010-3669)

WordPress Plugin Booking Multiple Vulnerabilities (2.5)

Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5674)

WordPress Plugin WooCommerce Unspecified Vulnerability (3.9.1)

Severity

Medium

Classification

CVE-2007-3948

Tags

Missing Update Known Vulnerabilities