lighttpd 1.4.18, and possibly other versions before 1.5.0, does not properly calculate the size of a file descriptor array, which allows remote attackers to cause a denial of service (crash) via a large number of connections, which triggers an out-of-bounds access.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2008-02-26T18:00:00
Updated: 2024-08-07T08:01:40.227Z
Reserved: 2008-02-26T00:00:00
Link: CVE-2008-0983
Vulnrichment
No data.
NVD
Status : Modified
Published: 2008-02-26T18:44:00.000
Modified: 2018-10-15T22:04:05.467
Link: CVE-2008-0983
Redhat
No data.