Lighttpd Resource Management Errors Vulnerability - CVE-2008-0983

lighttpd 1.4.18 and possibly other versions before 1.5.0 does not properly calculate the size of a file descriptor array which allows remote attackers to cause a denial of service (crash) via a large number of connections which triggers an out-of-bounds access.