|Category:||Web application abuses|
|Title:||akka HTTP DoS Vulnerability|
|Summary:||akka HTTP is prone to a denial of service vulnerability.|
akka HTTP is prone to a denial of service vulnerability.
Handling a request that carries an Accept header with an unsupported media
range starting with a wildcard but having a specific subtype (e.g. */boom) leads to a stack overflow during
negotiation of the content type. Per default, stack overflows are treated as fatal errors, so that the JVM
process will shut itself down immediately.
Update to version 10.0.6 or later.
Common Vulnerability Exposure (CVE) ID: CVE-2017-1000118|
|Copyright||This script is Copyright (C) 2017 Greenbone Networks GmbH|
|This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.