Vulnerabilities > CVE-2009-4587 - Denial-Of-Service vulnerability in Cherokee 0.5.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Cherokee Web Server 0.5.4 allows remote attackers to cause a denial of service (daemon crash) via an MS-DOS reserved word in a URI, as demonstrated by the AUX reserved word.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Cherokee web server 0.5.4 DoS. CVE-2009-4587. Dos exploit for windows platform |
| id | EDB-ID:9874 |
| last seen | 2016-02-01 |
| modified | 2009-10-26 |
| published | 2009-10-26 |
| reporter | Usman Saeed |
| source | https://www.exploit-db.com/download/9874/ |
| title | Cherokee Web server 0.5.4 - DoS |
References
- http://www.securityfocus.com/archive/1/507456/100/0/threaded
- http://www.securityfocus.com/archive/1/507651/100/0/thread
- http://www.securityfocus.com/bid/36814
- http://www.securitytracker.com/id?1023095
- http://xc0re.wordpress.com/2009/10/25/cherokee-web-server-0-5-4-denial-of-service/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53957