RSS   Vulnerabilities for 'Monkey http daemon'   RSS

2005-05-02
 
CVE-2005-1123

CWE-119
 
 
Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause a denial of service (memory corruption) via a request for a zero byte file.

 
2005-04-14
 
CVE-2005-1122

 
 
Format string vulnerability in cgi.c for Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP GET request containing double-encoded format string specifiers (aka "double expansion error").

 
2004-11-23
 
CVE-2004-0276

 
 
The get_real_string function in Monkey HTTP Daemon (monkeyd) 0.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an HTTP request with a sequence of "%" characters and a missing Host field.

 
2003-12-31
 
CVE-2003-1209

CWE-20
 
 
The Post_Method function in Monkey HTTP Daemon before 0.6.2 allows remote attackers to cause a denial of service (crash) via a POST request without a Content-Type header.

 
2003-05-12
 
CVE-2003-0218

 
 
Buffer overflow in PostMethod() function for Monkey HTTP Daemon (monkeyd) 0.6.1 and earlier allows remote attackers to execute arbitrary code via a POST request with a large body.

 
2002-12-31
 
CVE-2002-2154

CWE-22
 
 
Directory traversal vulnerability in Monkey HTTP Daemon 0.1.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences.

 
 
CVE-2002-1852

CWE-79
 
 
Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows remote attackers to inject arbitrary web script or HTML via (1) the URL or (2) a parameter to test2.pl.

 
 
CVE-2002-1663

 
 
The Post_Method function in method.c for Monkey HTTP Daemon before 0.5.1 allows remote attackers to cause a denial of service (crash) via a POST request with an invalid or missing Content-Length header value.

 

 >>> Vendor: Monkey 2 Products
Monkey http daemon
Trickle

Copyright 2024, cxsecurity.com

 

Back to Top