Unrated severityNVD Advisory· Published Dec 26, 2003· Updated Apr 16, 2026

CVE-2003-1198

Description

connection.c in Cherokee web server before 0.4.6 allows remote attackers to cause a denial of service via an HTTP POST request without a Content-Length header field.

Affected products

Cherokee/Cherokee Httpd8 versions
cpe:2.3:a:cherokee:cherokee_httpd:0.1:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:cherokee:cherokee_httpd:0.1:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.2:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:cherokee:cherokee_httpd:0.4.6:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/10518nvdPatch
www.securityfocus.com/bid/9345nvdPatch
freshmeat.net/redir/cherokee/20646/url_changelog/ChangeLognvdVendor Advisory
www.osvdb.org/3306nvd
exchange.xforce.ibmcloud.com/vulnerabilities/14119nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000