CVE-2013-2163
NONE EPSS 82.8%
Published Jun 13, 201412y ago · Modified Jun 16, 20262w ago
Published Jun 13, 2014 12y ago
Last Modified Jun 16, 2026 2w ago
Description
Monkey HTTP Daemon (monkeyd) before 1.2.2 allows remote attackers to cause a denial of service (infinite loop) via an offset equal to the file size in the Range HTTP header.
Threat Intelligence
EPSS Exploit Probability
82.8% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 1
CWE-20 Improper Input Validation Validation
Affected Products 2
| Vendor | Product | Version | Range |
|---|---|---|---|
| monkey-project | monkey | * | ≤1.2.1 |
| monkey-project | monkey | 1.2.0 | any |
References 4
- openwall.com http://www.openwall.com/lists/oss-security/2013/06/10/8
- securityfocus.com http://www.securityfocus.com/bid/60425
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/85125
- github.com https://github.com/monkey/monkey/issues/90
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.