Hello, recently I spent some time working on my HTTP fuzzer. Running it against affected version of Abyss Web Server it was possible to cause Denial of Service attack (the application crashed). Based on my analysis the bug is not exploitable. Crash: Crash details: (ugly and dirty) PoC: The problem is located in code which … Continue reading CVE-2021-3328 – Abyss Web Server – Remote DoS