webs.c in GoAhead WebServer before 2.1.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an HTTP POST request that contains a Content-Length header but no body data.
Find out more about CVE-2002-2428 from the MITRE-CVE dictionary and NIST NVD
Login may be required to access defects or downloads.
| Product Name | Status | Defect | Fixed | Downloads |
|---|---|---|---|---|
| Linux | ||||
| Wind River Linux LTS 17 | Not Vulnerable | -- | -- | -- |
| Wind River Linux 9 | Not Vulnerable | -- | -- | -- |
| Wind River Linux 8 | Not Vulnerable | -- | -- | -- |
| Wind River Linux 7 | Not Vulnerable | -- | -- | -- |
| Wind River Linux LTS 18 | Not Vulnerable | -- | -- | -- |
| VxWorks | ||||
| VxWorks 7 | Not Vulnerable | -- | -- | -- |
| VxWorks 6.9 | Not Vulnerable | -- | -- | -- |
| VxWorks 6.8 | Not Vulnerable | -- | -- | -- |
| VxWorks 6.7 | Not Vulnerable | -- | -- | -- |
| VxWorks 6.6 | Not Vulnerable | -- | -- | -- |
| VxWorks 6.4 | Not Vulnerable | -- | -- | -- |
| VxWorks 5.5 | Not Vulnerable | -- | -- | -- |
| Product name | Status |
|---|---|
| Linux | |
| Linux 7 SCP | Investigate |
| Linux 7 CGP | Investigate |
WRLinux doesn't ship goahead goahead_webserver.
