Lucene search
HistoryMar 02, 2009 - 10:30 p.m.
CVE-2009-0751
cve-2009-0751
yaws
denial of service
memory consumption
crash
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
Low
0.196 Low
EPSS
Percentile
96.3%
Yaws before 1.80 allows remote attackers to cause a denial of service (memory consumption and crash) via a request with a large number of headers.
Affected configurations
Node
yawsyawsRange≤1.79
ORyawsyawsMatch1.50
ORyawsyawsMatch1.51
ORyawsyawsMatch1.52
ORyawsyawsMatch1.53
ORyawsyawsMatch1.54
ORyawsyawsMatch1.55
ORyawsyawsMatch1.56
ORyawsyawsMatch1.57
ORyawsyawsMatch1.58
ORyawsyawsMatch1.61
ORyawsyawsMatch1.62
ORyawsyawsMatch1.63
ORyawsyawsMatch1.64
ORyawsyawsMatch1.65
ORyawsyawsMatch1.66
ORyawsyawsMatch1.67
ORyawsyawsMatch1.68
ORyawsyawsMatch1.70
ORyawsyawsMatch1.71
ORyawsyawsMatch1.72
ORyawsyawsMatch1.73
ORyawsyawsMatch1.74
ORyawsyawsMatch1.75
ORyawsyawsMatch1.76
ORyawsyawsMatch1.77
ORyawsyawsMatch1.78
Related
packetstorm
packetstorm
Yaws Denial Of Service
2009-03-05 00:00:00
seebug
seebug
Yaws < 1.80 (multiple headers) Remote Denial of Service Exploit
2009-03-03 00:00:00
Yaws < 1.80 (multiple headers) Remote Denial of Service Exploit
2014-07-01 00:00:00
cvelist
cvelist
CVE-2009-0751
2009-03-02 22:00:00
nvd
nvd
CVE-2009-0751
2009-03-02 22:30:00
openvas
openvas
Debian: Security Advisory (DSA-1740-1)
2009-03-19 00:00:00
Debian Security Advisory DSA 1740-1 (yaws)
2009-03-20 00:00:00
exploitpack
exploitpack
Yaws 1.80 - Multiple Headers Remote Denial of Service Vulnerabilities
2009-03-03 00:00:00
debiancve
debiancve
CVE-2009-0751
2009-03-02 22:30:00
securityvulns
securityvulns
yaws Web server DoS
2009-03-17 00:00:00
[SECURITY] [DSA 1740-1] New yaws packages fix denial of service
2009-03-17 00:00:00
prion
prion
Design/Logic Flaw
2009-03-02 22:30:00
debian
debian
[SECURITY] [DSA 1740-1] New yaws packages fix denial of service
2009-03-14 04:07:11
ubuntucve
ubuntucve
CVE-2009-0751
2009-03-02 00:00:00
nessus
nessus
Debian DSA-1740-1 : yaws - denial of service
2009-03-16 00:00:00
exploitdb
exploitdb
Yaws < 1.80 - Multiple Headers Remote Denial of Service Vulnerabilities
2009-03-03 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
Low
0.196 Low
EPSS
Percentile
96.3%
Related for CVE-2009-0751