Denial of Service Vulnerability in c-icap 0.2.x via parse_request Function

CVE-2013-7401 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method.

Learn more about our Web Application Penetration Testing UK.