CVE-2009-0751

Yaws before 1.80 allows remote attackers to cause a denial of service (memory consumption and crash) via a request with a large number of headers.
Severity
UNKNOWN
AV:N/AC:L/Au:N/C:N/I:N/A:P
Atk. Vector
NETWORK
Atk. Complexity
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
VendorProductVersion
yawsyaws
𝑥
≤ 1.79
yawsyaws
1.50
yawsyaws
1.51
yawsyaws
1.52
yawsyaws
1.53
yawsyaws
1.54
yawsyaws
1.55
yawsyaws
1.56
yawsyaws
1.57
yawsyaws
1.58
yawsyaws
1.61
yawsyaws
1.62
yawsyaws
1.63
yawsyaws
1.64
yawsyaws
1.65
yawsyaws
1.66
yawsyaws
1.67
yawsyaws
1.68
yawsyaws
1.70
yawsyaws
1.71
yawsyaws
1.72
yawsyaws
1.73
yawsyaws
1.74
yawsyaws
1.75
yawsyaws
1.76
yawsyaws
1.77
yawsyaws
1.78
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
yaws
bullseye
2.0.8+dfsg-3
fixed
bookworm
2.1.1+dfsg-2
fixed
sid
2.2.0+dfsg-1
fixed
trixie
2.2.0+dfsg-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
yaws
oneiric
not-affected
natty
not-affected
maverick
not-affected
lucid
not-affected
karmic
not-affected
jaunty
not-affected
intrepid
ignored
hardy
ignored
gutsy
ignored
dapper
ignored
Common Weakness Enumeration