Insufficient Error Handlinghttp-proxy
Affected versions of
http-proxy are vulnerable to a denial of service attack, wherein an attacker can force an error which will cause the server to crash.
Update to version 0.7.0 or later.
Have content suggestions? Send them to [email protected]
publishedAdvisory publishedApr 11th, 2017
reportedInitial report by TJ HolowaychukMar 10th, 2017