PT-2019-6610 · Weborf · Weborf

Salvo Tomaselli

Published

2019-11-20

Updated

2019-11-22

CVE-2011-0529

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Weborf versions prior to 0.12.5

Description The issue is related to a Denial of Service (DOS) caused by malformed fields in HTTP requests. This can lead to service disruption.

Recommendations For versions prior to 0.12.5, update to version 0.12.5 or later to resolve the issue. As a temporary workaround, consider restricting access to HTTP endpoints that may be vulnerable to malformed fields until a patch is available.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2011-0529

Affected Products

Weborf

PT-2019-6610 · Weborf · Weborf

CVE-2011-0529

Weakness Enumeration

Related Identifiers

Affected Products

References · 6