Vulnerabilities > Monkey Project > Monkey > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-1123 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Monkey-Project Monkey Monkey daemon (monkeyd) before 0.9.1 allows remote attackers to cause a denial of service (memory corruption) via a request for a zero byte file. | 5.0 |
| 2004-11-23 | CVE-2004-0276 | Improper Input Validation vulnerability in Monkey-Project Monkey The get_real_string function in Monkey HTTP Daemon (monkeyd) 0.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an HTTP request with a sequence of "%" characters and a missing Host field. | 5.0 |
| 2003-12-31 | CVE-2003-1209 | Improper Input Validation vulnerability in Monkey-Project Monkey The Post_Method function in Monkey HTTP Daemon before 0.6.2 allows remote attackers to cause a denial of service (crash) via a POST request without a Content-Type header. | 5.0 |
| 2002-12-31 | CVE-2002-2154 | Path Traversal vulnerability in Monkey-Project Monkey 0.1.4 Directory traversal vulnerability in Monkey HTTP Daemon 0.1.4 allows remote attackers to read arbitrary files via .. | 5.0 |
| 2002-12-31 | CVE-2002-1852 | Cross-Site Scripting vulnerability in Monkey-Project Monkey 0.5.0 Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows remote attackers to inject arbitrary web script or HTML via (1) the URL or (2) a parameter to test2.pl. | 4.3 |
| 2002-12-31 | CVE-2002-1663 | Improper Input Validation vulnerability in Monkey-Project Monkey 0.1.1 The Post_Method function in method.c for Monkey HTTP Daemon before 0.5.1 allows remote attackers to cause a denial of service (crash) via a POST request with an invalid or missing Content-Length header value. | 5.0 |