CVE-2013-3724
NONE EPSS 96.0%
Published Aug 1, 201312y ago · Modified Jun 16, 20262w ago
Published Aug 1, 2013 12y ago
Last Modified Jun 16, 2026 2w ago
Description
The mk_request_header_process function in mk_request.c in Monkey 1.1.1 allows remote attackers to cause a denial of service (thread crash and service outage) via a '\0' character in an HTTP request.
Threat Intelligence
EPSS Exploit Probability
96.0% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available
Weaknesses 1
CWE-20 Improper Input Validation Validation
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| monkey-project | monkey | 1.1.1 | any |
References 1
- bugs.monkey-project.com http://bugs.monkey-project.com/ticket/181
Remediation
- bugs.monkey-project.com http://bugs.monkey-project.com/ticket/181