CVE-2003-1198

Name of the Vulnerable Software and Affected Versions Cherokee web server versions prior to 0.4.6

Description The issue allows remote attackers to cause a denial of service via an HTTP POST request without a Content-Length header field. This is related to the connection.c file in the Cherokee web server.

Recommendations For versions prior to 0.4.6, update to version 0.4.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the HTTP POST request functionality until the update is applied.