Vulnerability Details : CVE-2009-0751
Public exploit exists!
Yaws before 1.80 allows remote attackers to cause a denial of service (memory consumption and crash) via a request with a large number of headers.
Vulnerability category: Denial of service
Products affected by CVE-2009-0751
- cpe:2.3:a:yaws:yaws:*:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.55:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.56:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.65:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.66:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.74:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.75:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.57:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.58:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.67:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.68:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.76:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.77:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.53:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.54:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.63:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.64:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.72:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.73:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.50:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.51:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.52:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.61:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.62:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.70:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.71:*:*:*:*:*:*:*
- cpe:2.3:a:yaws:yaws:1.78:*:*:*:*:*:*:*
Threat overview for CVE-2009-0751
Top countries where our scanners detected CVE-2009-0751
Top open port discovered on systems with this issue
23
IPs affected by CVE-2009-0751 7
Find out if you* are
affected by CVE-2009-0751!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2009-0751
18.20%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-0751
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2009-0751
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-0751
-
https://www.exploit-db.com/exploits/8148
Yaws < 1.80 - Multiple Headers Remote Denial of Service Vulnerabilities - Multiple dos Exploit
-
http://www.debian.org/security/2009/dsa-1740
[SECURITY] [DSA 1740-1] New yaws packages fix denial of service
-
http://www.openwall.com/lists/oss-security/2009/02/19/1
oss-security - CVE request for yaws
-
http://www.vupen.com/english/advisories/2009/0590
Site en construction
-
http://www.securityfocus.com/bid/33834
-
http://yaws.hyber.org/
Vendor Advisory
Jump to