CVE-2007-3948
CVE-2007-3948
connections.c in lighttpd before 1.4.16 might accept more connections than the configured maximum, which allows remote attackers to cause a denial of service (failed assertion) via a large number of connection attempts.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://osvdb.org/38312http://secunia.com/advisories/26130http://secunia.com/advisories/26158http://secunia.com/advisories/26505http://secunia.com/advisories/31104http://security.gentoo.org/glsa/glsa-200708-11.xmlhttp://trac.lighttpd.net/trac/changeset/1873http://trac.lighttpd.net/trac/ticket/1216http://www.debian.org/security/2008/dsa-1609http://www.novell.com/linux/security/advisories/2007_15_sr.htmlhttp://www.securityfocus.com/archive/1/474131/100/0/threadedhttp://www.securityfocus.com/bid/24967