CN
CyberNewsUz
Threat Intelligence Portal
LOADING0%
CyberNewsUz
Threat Intelligence Portal
CyberNewsUz
Threat Intelligence Portal
Erlang OTP (inets httpd moduli) da HTTP so'rovlarining nomuvofiq talqini ('HTTP so'rovi kontrabandasi') zaifligi HTTP so'rovi kontrabandasiga imkon beradi. Ushbu zaiflik lib/inets/src/http_server/httpd_request.erl dastur fayllari va httpd_request:parse_headers/7 dastur rutinlari bilan bog'liq. Server takroriy Content-Length sarlavhalarini rad etmaydi yoki normallashtirmaydi. So'rovdagi eng qadimgi Content-Length asosiy tahlil uchun ishlatiladi, umumiy teskari proksi-serverlar esa (nginx, Apache httpd, Envoy)
Vendor
β
Product
β
CVSS Score
β
Nashr sanasi
13-mar, 2026