Date: Fri, 7 Jun 2013 22:25:27 -0300 From: Felipe Pena <felipensp@...il.com> To: oss-security@...ts.openwall.com Subject: CVE request: Monkey HTTPD - DoS due bug on Range header handling I've found an issue on the way as Monkey HTTPD handle the Range HTTP header when receiving Range:bytes=N-N where N is the exact file size, which causes the thread to go into an infinite loop, hence keeping the server busy on each request until a server shutdown. More details on bug report at http://bugs.monkey-project.com/ticket/184 -- Regards, Felipe Pena
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.