CVE-2012-1783

Saurabh Gupta Tiny Server < 1.1.9 - Improper Input Validation

Title source: rule

Description

Tiny Server 1.1.9 and earlier allows remote attackers to cause a denial of service (crash) via a long string in a GET request without an HTTP version number.

Exploits (1)

exploitdb WORKING POC VERIFIED

by localh0t · pythondoswindows

https://www.exploit-db.com/exploits/18524

View Code ZIP pw:eip

References (2)

Core 2

Core References

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/18524

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/73482

Scores

EPSS 0.0265

EPSS Percentile 85.8%

Details

CWE

CWE-20

Status published

Products (3)

saurabh_gupta/tiny_server 1.0.5

saurabh_gupta/tiny_server 1.1.5

saurabh_gupta/tiny_server < 1.1.9

Published Mar 19, 2012

Tracked Since Feb 18, 2026