CVE-2004-1973
published 2004-04-27CVE-2004-1973: DiGi Web Server allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request that contains a large number of / (slash)…
PriorityP418medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
3.84%
88.8th percentile
DiGi Web Server allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request that contains a large number of / (slash) characters, which consumes resources when DiGi converts the slashes to \ (backslash) characters.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| digi | www_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=108311170018203&w=2http://secunia.com/advisories/11490http://securitytracker.com/alerts/2004/Apr/1009957.htmlhttp://sourceforge.net/project/shownotes.php?release_id=234261http://www.autistici.org/fdonato/advisory/DiGiWwwServerC1-adv.txthttp://www.osvdb.org/5702http://www.securityfocus.com/bid/10228https://exchange.xforce.ibmcloud.com/vulnerabilities/15987http://marc.info/?l=bugtraq&m=108311170018203&w=2http://secunia.com/advisories/11490http://securitytracker.com/alerts/2004/Apr/1009957.htmlhttp://sourceforge.net/project/shownotes.php?release_id=234261http://www.autistici.org/fdonato/advisory/DiGiWwwServerC1-adv.txthttp://www.osvdb.org/5702http://www.securityfocus.com/bid/10228https://exchange.xforce.ibmcloud.com/vulnerabilities/15987
2004-04-27
Published