DiGi Web Server allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request that contains a large number of / (slash) characters, which consumes resources when DiGi converts the slashes to \ (backslash) characters.
Software | From | Fixed in |
---|---|---|
digi / www_server | compieuw | compieuw.x |
digi / www_server | compieuw-beta1 | compieuw-beta1.x |
digi / www_server | compieuw-beta2 | compieuw-beta2.x |