Tiny Server 1.1.9 and earlier allows remote attackers to cause a denial of service (crash) via a long string in a GET request without an HTTP version number.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| saurabh_gupta | tiny_server | * |
| saurabh_gupta | tiny_server | 1.1.5 |
| saurabh_gupta | tiny_server | 1.0.5 |