NuytsTech Security

CVE-2008-4298

by ·

Memory leak in the http_request_parse function in request.c in lighttpd before 1.4.20 allows remote attackers to cause a denial of service (memory consumption) via a large number of requests with duplicate request headers.

Date published : 2008-09-26

http://www.securityfocus.com/bid/31434

http://www.securityfocus.com/archive/1/497932/100/0/threaded

Tags: