CVE-2008-4298
EPSS 2.6%lighttpd - various problems
發布日:2008/9/27修改日:2026/4/28
也稱為:DEBIAN-CVE-2008-4298
描述
Memory leak in the http_request_parse function in request.c in lighttpd before 1.4.20 allows remote attackers to cause a denial of service (memory consumption) via a large number of requests with duplicate request headers.
受影響套件(2)
- Debian/lighttpdfrom 0, < 1.4.19-5
- Debian/lighttpdfrom 0, < 1.4.13-4etch11