CVE-2004-2381 Information

Description

HttpRequest.java in Jetty HTTP Server before 4.2.19 allows remote attackers to cause denial of service (memory usage and application crash) via HTTP requests with a large Content-Length.

Reference

http://cvs.sourceforge.net/viewcvs.py/jetty/Jetty/src/org/mortbay/http/HttpRequest.java?r1=1.75&r2=1.76 http://secunia.com/advisories/11166/ http://sourceforge.net/project/shownotes.php?release_id=224743 http://www.osvdb.org/4387 http://www.securityfocus.com/bid/9917 https://exchange.xforce.ibmcloud.com/vulnerabilities/15537