Unrated severityNVD Advisory· Published Nov 23, 2004· Updated Apr 16, 2026
CVE-2004-0276
CVE-2004-0276
Description
The get_real_string function in Monkey HTTP Daemon (monkeyd) 0.8.1 and earlier allows remote attackers to cause a denial of service (crash) via an HTTP request with a sequence of "%" characters and a missing Host field.
Affected products
11cpe:2.3:a:monkey-project:monkey:*:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:monkey-project:monkey:*:*:*:*:*:*:*:*range: <=0.8.1
- cpe:2.3:a:monkey-project:monkey:0.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:monkey-project:monkey:0.8.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- www.securityfocus.com/bid/9642nvdExploitPatchVendor Advisory
- aluigi.altervista.org/poc/monkeydos.zipnvd
- marc.infonvd
- monkeyd.sourceforge.netnvd
- www.osvdb.org/3921nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/15187nvd
News mentions
0No linked articles in our index yet.