5

CVE-2009-2299

EPSS 0.88%
Veröffentlicht 02.07.2009 10:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The Artofdefence Hyperguard Web Application Firewall (WAF) module before 2.5.5-11635, 3.0 before 3.0.3-11636, and 3.1 before 3.1.1-11637, a module for the Apache HTTP Server, allows remote attackers to cause a denial of service (memory consumption) via an HTTP request with a large Content-Length value but no POST data.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Hyperguard Web Application Firewall Project ≫ Hyperguard Web Application Firewall Version < 2.5.5-11635

Apache ≫ HTTP Server

Hyperguard Web Application Firewall Project ≫ Hyperguard Web Application Firewall Version >= 3.0 < 3.0.3-11636

Apache ≫ HTTP Server

Hyperguard Web Application Firewall Project ≫ Hyperguard Web Application Firewall Version >= 3.1 < 3.1.1-11637

Apache ≫ HTTP Server

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.88%	0.746

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

Es wurden noch keine Informationen zu CWE veröffentlicht.

http://secunia.com/advisories/35645

Third Party Advisory

http://www.h4ck1nb3rg.at/wafs/advisory_artofdefence_hyperguard_200907.txt

Broken Link

http://www.securityfocus.com/archive/1/504680/100/0/threaded

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2009-2299

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-2299

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-2299

EUVD