CVE-2010-0295
published 2010-02-03CVE-2010-0295: lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of…
PriorityP431medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
12.11%
95.6th percentile
lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a request into small pieces that are sent at a slow rate.
Affected
67 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | lighttpd | < lighttpd 1.4.26-1 (bookworm) | lighttpd 1.4.26-1 (bookworm) |
| lighttpd | lighttpd | <= 1.4.25 | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
| lighttpd | lighttpd | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
lighttpd up to 1.1.1 resource management (EDB-33591 / Nessus ID 80699)
vuldb·2026-04-30·CVSS 5.0
CVE-2010-0295 [MEDIUM] lighttpd up to 1.1.1 resource management (EDB-33591 / Nessus ID 80699)
A vulnerability has been found in lighttpd up to 1.1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality. This manipulation causes improper resource management.
This vulnerability appears as CVE-2010-0295. The attack may be initiated remotely. In addition, an exploit is available.
The affected component should be upgraded.
GHSA
GHSA-x8r6-c7pf-w6m4: lighttpd before 1
ghsa_unreviewed·2022-05-02
CVE-2010-0295 [MEDIUM] GHSA-x8r6-c7pf-w6m4: lighttpd before 1
lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a request into small pieces that are sent at a slow rate.
OSV
CVE-2010-0295: lighttpd before 1
osv·2010-02-03·CVSS 5.0
CVE-2010-0295 [MEDIUM] CVE-2010-0295: lighttpd before 1
lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a request into small pieces that are sent at a slow rate.
Debian
CVE-2010-0295: lighttpd - lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation th...
vendor_debian·2010·CVSS 5.0
CVE-2010-0295 [MEDIUM] CVE-2010-0295: lighttpd - lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation th...
lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a request into small pieces that are sent at a slow rate.
Scope: local
bookworm: resolved (fixed in 1.4.26-1)
bullseye: resolved (fixed in 1.4.26-1)
forky: resolved (fixed in 1.4.26-1)
sid: resolved (fixed in 1.4.26-1)
trixie: resolved (fixed in 1.4.26-1)
Red Hat
lighttpd: Remote DoS (excessive memory use) by handling specially-crafted HTTP request
vendor_redhat·CVSS 5.0
CVE-2010-0295 [MEDIUM] lighttpd: Remote DoS (excessive memory use) by handling specially-crafted HTTP request
lighttpd: Remote DoS (excessive memory use) by handling specially-crafted HTTP request
lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a request into small pieces that are sent at a slow rate.
No detection rules found.
Exploit-DB
Mozilla Firefox - location.QueryInterface() Code Execution (Metasploit)
exploitdb·2010-09-20
CVE-2006-0295 Mozilla Firefox - location.QueryInterface() Code Execution (Metasploit)
Mozilla Firefox - location.QueryInterface() Code Execution (Metasploit)
---
##
# $Id: firefox_queryinterface.rb 10394 2010-09-20 08:06:27Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Firefox location.QueryInterface() Code Execution',
'Description' => %q{
This module exploits a code execution vulnerability in the Mozilla
Firefox browser. To reliably exploit this vulnerability, we need to fill
almost a gigabyte of memory with our nop sled and payload. This module has
been tested on OS X 10.3 with the stock Firefox 1.5.0 package.
}
Exploit-DB
lighttpd 1.4/1.5 - Slow Request Handling Remote Denial of Service
exploitdb·2010-02-02
CVE-2010-0295 lighttpd 1.4/1.5 - Slow Request Handling Remote Denial of Service
lighttpd 1.4/1.5 - Slow Request Handling Remote Denial of Service
---
source: https://www.securityfocus.com/bid/38036/info
The 'lighttpd' webserver is prone to a denial-of-service vulnerability.
Remote attackers can exploit this issue to cause the application to hang, denying service to legitimate users.
##slow_test.sh
for ((j=0;j/dev/null 2>/dev/null &
done&
sleep 3
done
http://blogs.sun.com/security/entry/cve_2010_0295_vulnerability_inhttp://download.lighttpd.net/lighttpd/security/lighttpd-1.4.x_fix_slow_request_dos.patchhttp://download.lighttpd.net/lighttpd/security/lighttpd-1.5_fix_slow_request_dos.patchhttp://download.lighttpd.net/lighttpd/security/lighttpd_sa_2010_01.txthttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041264.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041296.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041307.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-02/msg00003.htmlhttp://redmine.lighttpd.net/issues/2147http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2710http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2711http://secunia.com/advisories/38403http://secunia.com/advisories/39765http://security.gentoo.org/glsa/glsa-201006-17.xmlhttp://www.debian.org/security/2010/dsa-1987http://www.openwall.com/lists/oss-security/2010/02/01/8http://www.securityfocus.com/bid/38036http://www.vupen.com/english/advisories/2011/0172https://exchange.xforce.ibmcloud.com/vulnerabilities/56038http://blogs.sun.com/security/entry/cve_2010_0295_vulnerability_inhttp://download.lighttpd.net/lighttpd/security/lighttpd-1.4.x_fix_slow_request_dos.patchhttp://download.lighttpd.net/lighttpd/security/lighttpd-1.5_fix_slow_request_dos.patchhttp://download.lighttpd.net/lighttpd/security/lighttpd_sa_2010_01.txthttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041264.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041296.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-May/041307.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-02/msg00003.htmlhttp://redmine.lighttpd.net/issues/2147http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2710http://redmine.lighttpd.net/projects/lighttpd/repository/revisions/2711http://secunia.com/advisories/38403http://secunia.com/advisories/39765http://security.gentoo.org/glsa/glsa-201006-17.xmlhttp://www.debian.org/security/2010/dsa-1987http://www.openwall.com/lists/oss-security/2010/02/01/8http://www.securityfocus.com/bid/38036http://www.vupen.com/english/advisories/2011/0172https://exchange.xforce.ibmcloud.com/vulnerabilities/56038
2010-02-03
Published