CVE-2010-0295

lighttpd before 1.4.26, and 1.5.x, allocates a buffer for each read operation that occurs for a request, which allows remote attackers to cause a denial of service (memory consumption) by breaking a request into small pieces that are sent at a slow rate.

We have discovered 797 live websites that are affected by CVE-2010-0295.

Run a Free Instant Scan



Affected Software

Product  lighttpd
Category Web Servers
Vulnerable Domains797 live websites (1.63% of lighttpd install base)
Vulnerable Versions
  • from 0 through 1.4.26
Vulnerable Versions Count8 versions ( 14% of all versions)



Details

  • Published - Feb 3, 2010
  • Updated - Aug 7, 2024

Website Distribution by Country

Number of websites using CVE-2010-0295
United States72 websites


France516 websites
GB63 websites
Singapore61 websites
Germany12 websites
China8 websites
Sweden8 websites
Switzerland7 websites
Bulgaria6 websites
Denmark6 websites

Website Distribution by TLD

Number of websites using CVE-2010-0295
.fr483 websites
.com166 websites
.org43 websites
.net24 websites
.co.uk15 websites
.dk6 websites
.org.uk6 websites
.ch5 websites
.nl4 websites
.de4 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2010-0295

Top websites that are affected by CVE-2010-0295. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
***.*********.com United States***,***
***.****.fr France***,***
********.net Singapore***,***
***********.pl Poland***,***
*****.*****.net Bulgaria***,***
********.****.****.fr France*,***,***
*****.net Bulgaria*,***,***
******.nu Sweden*,***,***
***.org United States*,***,***
***.**.com Singapore*,***,***
See full domain list

FAQ

A total of 797 websites have been identified as vulnerable to CVE-2010-0295, based on global website indexing conducted by WebTechSurvey.
The lighttpd is affected by the CVE-2010-0295 vulnerability.
lighttpd versions up to and including 1.4.26 are vulnerable to CVE-2010-0295.

References