Computer Security
[EN] securityvulns.ru no-pyccku


Appweb web server DoS
Published:12.05.2015
Source:
SecurityVulns ID:14484
Type:remote
Threat Level:
5/10
Description:NULL poiinter dereference on Range: header parsing.
Affected:EMBEDTHIS : Appweb 5.2
CVE:CVE-2014-9708 (Embedthis Appweb before 4.6.6 and 5.x before 5.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a Range header with an empty value, as demonstrated by "Range: x=,".)
Original documentdocumentMatthew Daley, Advisory: CVE-2014-9708: Appweb Web Server (12.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod