Buffer overflow in zawhttpd 0.8.23, and possibly previous versions, allows remote attackers to cause a denial of service (daemon crash) via a request for a URI composed of several "\" (backslash) characters.
https://exchange.xforce.ibmcloud.com/vulnerabilities/26257
http://www.securityfocus.com/archive/1/432955/100/0/threaded
http://www.securiteam.com/exploits/5OP0315IKK.html