FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

darkhttpd -- DOS vulnerability

Affected packages
darkhttpd < 1.14

Details

VuXML ID 9c399521-5f80-11ed-8ac4-b42e991fc52e
Discovery 2020-11-02
Entry 2022-11-08

Mitre reports:

flaw was found in darkhttpd. Invalid error handling allows remote attackers to cause denial-of-service by accessing a file with a large modification date. The highest threat from this vulnerability is to system availability.

References

CVE Name CVE-2020-25691
URL https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25691