header-logo
Suggest Exploit
vendor:
SimpleWebServer
by:
SecurityFocus
7.5
CVSS
HIGH
Denial of Service
400
CWE
Product Name: SimpleWebServer
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: YES
Related CWE: CVE-2002-0647
CPE: a:simplewebserver:simplewebserver
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2002

A problem with SimpleWebServer

SimpleWebServer is vulnerable to a denial of service attack due to improper handling of long requests. A remote attacker can send a HTTP request of excessive length to the server, causing it to become unstable and crash.

Mitigation:

Upgrade to the latest version of SimpleWebServer.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/5961/info

A problem with SimpleWebServer could make it possible for a user to deny service to legitimate users of the server.

It has been reported that SimpleWebServer does not properly handle long requests. Because of this, a remote attacker placing a HTTP request of excessive length could cause the server to become unstable. In most cases, a long request causes the web server to crash, requiring a manual restart of the service.

http://<server>/AAA[...]AAA

Navigation

Suggest Exploit

Services By CQR