Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0295HistoryFeb 03, 2010 - 7:30 p.m.
CVE-2010-0295
2010-02-0319:30:00
Debian Security Bug Tracker
security-tracker.debian.org
14
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.074
Percentile
94.1%
lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a request into small pieces that are sent at a slow rate.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | lighttpd | <Β 1.4.26-1 | lighttpd_1.4.26-1_all.deb |
| Debian | 11 | all | lighttpd | <Β 1.4.26-1 | lighttpd_1.4.26-1_all.deb |
| Debian | 999 | all | lighttpd | <Β 1.4.26-1 | lighttpd_1.4.26-1_all.deb |
| Debian | 13 | all | lighttpd | <Β 1.4.26-1 | lighttpd_1.4.26-1_all.deb |
Related
nessus
nessus
lighttpd < 1.4.26 or 1.5.0 Denial of Service
2018-02-06 00:00:00
GLSA-201006-17 : lighttpd: Denial of Service
2010-06-04 00:00:00
Fedora 12 : lighttpd-1.4.26-2.fc12 (2010-7643)
2010-07-01 00:00:00
ubuntucve
ubuntucve
CVE-2010-0295
2010-02-03 00:00:00
exploitdb
exploitdb
lighttpd 1.4/1.5 - Slow Request Handling Remote Denial of Service
2010-02-02 00:00:00
openvas
openvas
Debian Security Advisory DSA 1987-1 (lighttpd)
2010-02-10 00:00:00
Debian: Security Advisory (DSA-1987-1)
2010-02-10 00:00:00
Llighttpd < 1.4.26 'Slow Request Handling' Remote DoS Vulnerability
2010-02-02 00:00:00
prion
prion
Design/Logic Flaw
2010-02-03 19:30:00
fedora
fedora
[SECURITY] Fedora 11 Update: lighttpd-1.4.26-2.fc11
2010-05-12 17:54:39
[SECURITY] Fedora 12 Update: lighttpd-1.4.26-2.fc12
2010-05-12 18:02:08
[SECURITY] Fedora 13 Update: lighttpd-1.4.26-2.fc13
2010-05-12 17:59:39
securityvulns
securityvulns
[SECURITY] [DSA 1987-1] New lighttpd packages fix denial of service
2010-02-02 00:00:00
lighttpd DoS
2010-02-02 00:00:00
debian
debian
[SECURITY] [DSA 1987-1] New lighttpd packages fix denial of service
2010-02-02 11:19:34
cvelist
cvelist
CVE-2010-0295
2010-02-03 19:00:00
freebsd
freebsd
lighttpd -- denial of service vulnerability
2010-02-02 00:00:00
nvd
nvd
CVE-2010-0295
2010-02-03 19:30:00
seebug
seebug
lighttpd < 1.4.25-r1 Denial of Service
2010-06-06 00:00:00
lighttpdηΈε½’HTTPθ―·ζ±θΏη¨ζη»ζε‘ζΌζ΄
2010-02-04 00:00:00
redhatcve
redhatcve
CVE-2010-0295
2019-10-04 22:47:08
cve
cve
CVE-2010-0295
2010-02-03 19:30:00
gentoo
gentoo
lighttpd: Denial of service
2010-06-03 00:00:00
ibm
ibm
osv
osv
lighttpd-1.4.37-1.6 on GA media
2024-06-15 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
0.074
Percentile
94.1%
Related for DEBIANCVE:CVE-2010-0295