Mongoose 'Content-Length' HTTP Header Remote Denial Of Service Vulnerability Network Vulnerability

Summary

Mongoose is prone to a remote denial-of-service vulnerability because it fails to handle specially crafted input. Successfully exploiting this issue will allow an attacker to crash the affected application, denying further service to legitimate users. Mongoose 2.11 is vulnerable other versions may also be affected.

References

http://www.johnleitch.net/Vulnerabilities/Mongoose.2.11.Denial.Of.Service/74
https://www.securityfocus.com/bid/45602

Updated on 2017-03-28

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Apache 'mod_proxy_http' 2.2.9 for Unix Timeout Handling Information Disclosure Vulnerability
Ecava IntegraXor Multiple Cross-Site Scripting Vulnerabilities (Windows)
CA ARCserver D2D GWT RPC Request Multiple Vulnerabilities
Codebrws.asp Source Disclosure Vulnerability
GoAhead WebServer Script Source Code Disclosure

Take action and discover your vulnerabilities