Lighttpd Slow Request Handling Remote Denial Of Service Vulnerability Network Vulnerability

Summary

lighttpd is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause the application to hang, denying service to legitimate users.

Solution

SVN fixes and patches are available. Please see the references for details.

References

http://download.lighttpd.net/lighttpd/security/lighttpd_sa_2010_01.txt
http://redmine.lighttpd.net/issues/2147
http://www.lighttpd.net/
http://www.securityfocus.com/bid/38036

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0295

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Check for dangerous IIS default files
GoAhead Webserver Multiple Stored Cross Site Scripting Vulnerabilities
Boa Webserver Terminal Escape Sequence in Logs Command Injection Vulnerability
IBM WebSphere Application Server JNDI information disclosure Vulnerability
Apache Tomcat Hash Collision Denial Of Service Vulnerability

lighttpd Slow Request Handling Remote Denial Of Service Vulnerability

Take action and discover your vulnerabilities