CVE-2022-37797 - In lighttpd 1.4.65, mod_wstunnel does not initialize a handler function pointer if an invalid HTTP r

CVE-2022-37797

Summary

In lighttpd 1.4.65, mod_wstunnel does not initialize a handler function pointer if an invalid HTTP request (websocket handshake) is received. It leads to null pointer dereference which crashes the server. It could be used by an external attacker to cause denial of service condition.

References

https://redmine.lighttpd.net/issues/3165
https://www.debian.org/security/2022/dsa-5243
https://lists.debian.org/debian-lts-announce/2022/10/msg00002.html
https://security.gentoo.org/glsa/202210-12

Vulnerable Configurations

cpe:2.3:a:lighttpd:lighttpd:1.4.65:*:*:*:*:*:*:*
cpe:2.3:a:lighttpd:lighttpd:1.4.65:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

CWE-476

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

03-12-2022 - 01:11

Published

12-09-2022 - 15:15

Last modified

03-12-2022 - 01:11