Http-proxy is a proxying library. Because of the way errors are handled in versions before 0.7.0, an attacker that forces an error can crash the server, causing a denial of service.
The product does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the product.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Http-proxy | Http-proxy_project | * | 0.7.0 (excluding) |