Vulnerability Details CVE-2004-2117
Tiny Server 1.1 allows remote attackers to cause a denial of service (crash) via malformed HTTP requests such as (1) a GET request without the HTTP version (HTTP/1.1), or (2) a request without GET or the HTTP version.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.077
EPSS Ranking 91.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=107496530806730&w=2
- http://secunia.com/advisories/10707
- http://www.autistici.org/fdonato/advisory/tinyServer1.1%5B1.0.5%5D-adv.txt
- http://www.osvdb.org/3709
- http://www.securityfocus.com/bid/9485
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14928
- http://marc.info/?l=bugtraq&m=107496530806730&w=2
- http://secunia.com/advisories/10707
- http://www.autistici.org/fdonato/advisory/tinyServer1.1%5B1.0.5%5D-adv.txt
- http://www.osvdb.org/3709
- http://www.securityfocus.com/bid/9485
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14928
Products affected by CVE-2004-2117
-
cpe:2.3:a:tinyserver:tinyserver:1.1