CVE-2002-2428

webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP POST request that contains a Content-Length header but no body data.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:goahead:goahead_webserver:*:*:*:*:*:*:*:*
cpe:2.3:a:goahead:goahead_webserver:2.0:*:*:*:*:*:*:*
cpe:2.3:a:goahead:goahead_webserver:2.1:*:*:*:*:*:*:*
cpe:2.3:a:goahead:goahead_webserver:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:goahead:goahead_webserver:2.1.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-02-06 19:30

Updated : 2024-02-04 17:33


NVD link : CVE-2002-2428

Mitre link : CVE-2002-2428

CVE.ORG link : CVE-2002-2428


JSON object : View

Products Affected

goahead

  • goahead_webserver
CWE
CWE-20

Improper Input Validation