The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based buffer overflow.
Score CVSS v2.0
7.5
/ 10.0
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Informations
- Publié
- 20 juil. 2013
- Mis à jour
- 11 avr. 2025
- Statut
- Deferred
- Source
- secalert@redhat.com
Produits affectés
f5 nginxToutes les CVE nginx →
Versions : 1.4.0
fedoraproject fedora
Versions : 19
Faiblesses (CWE)
CWE-787
Références (20)
- http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105176.htmlThird Party Advisory
- http://mailman.nginx.org/pipermail/nginx-announce/2013/000112.htmlMitigationPatchVendor Advisory
- http://nginx.org/download/patch.2013.chunked.txtPatchVendor Advisory
- http://packetstormsecurity.com/files/121675/Nginx-1.3.9-1.4.0-Denial-Of-Service.htmlExploitThird Party AdvisoryVDB Entry
- http://secunia.com/advisories/55181Third Party Advisory
- http://security.gentoo.org/glsa/glsa-201310-04.xmlThird Party Advisory
- http://www.osvdb.org/93037Broken Link
- http://www.securityfocus.com/bid/59699Third Party AdvisoryVDB Entry
- https://github.com/rapid7/metasploit-framework/pull/1834PatchThird Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105176.htmlThird Party Advisory
- http://mailman.nginx.org/pipermail/nginx-announce/2013/000112.htmlMitigationPatchVendor Advisory
- http://nginx.org/download/patch.2013.chunked.txtPatchVendor Advisory
- http://packetstormsecurity.com/files/121675/Nginx-1.3.9-1.4.0-Denial-Of-Service.htmlExploitThird Party AdvisoryVDB Entry
- http://secunia.com/advisories/55181Third Party Advisory
- + 5 autres références sur NVD
CVEs similaires
Autres vulnérabilités de type CWE-787
Loading…
Surveillez vos produits
Recevez une alerte automatique à chaque nouvelle CVE affectant vos équipements.