Small HTTP Server Incomplete Request Denial of Service Vulnerability
BID:1942
Info
Small HTTP Server Incomplete Request Denial of Service Vulnerability
| Bugtraq ID: | 1942 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2000-0899 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Nov 14 2000 12:00AM |
| Updated: | Jul 11 2009 03:56AM |
| Credit: | Discovered and posted to Bugtraq on Nov 14, 2000 by 403-security team <[email protected]>. |
| Vulnerable: |
Max Feoktistov Small HTTP server 2.0 1 |
| Not Vulnerable: |
Max Feoktistov Small HTTP server 2.0 3 |
Discussion
Small HTTP Server Incomplete Request Denial of Service Vulnerability
Small HTTP Server is a full service web server. This utility is less than 30Kb and requires minimal system resources.
By requesting multiple GET, HEAD or POST commands and closing the connection before the server has responded, the server will crash. A restart of the application is required in order to gain normal functionality.
Small HTTP Server is a full service web server. This utility is less than 30Kb and requires minimal system resources.
By requesting multiple GET, HEAD or POST commands and closing the connection before the server has responded, the server will crash. A restart of the application is required in order to gain normal functionality.
References
Small HTTP Server Incomplete Request Denial of Service Vulnerability
References:
References:
- Small HTTP server (Max Feoktistov [email protected])