CVE-2015-2297

Опубликовано: 06 окт. 2017

Источник: debian

Описание

nanohttp in libcsoap allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Authorization header.

Пакеты

Пакет	Статус	Релиз	Тип
libcsoap	removed		package
libcsoap	no-dsa	squeeze	package
libcsoap	no-dsa	wheezy	package

Примечания

CVE assigned only for the null pointer dereference, not all issues in
https://www.openwall.com/lists/oss-security/2015/02/17/2

Связанные уязвимости

CVE-2015-2297

CVSS3: 7.5

ubuntu

больше 8 лет назад

nanohttp in libcsoap allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Authorization header.

CVE-2015-2297

CVSS3: 7.5

nvd

больше 8 лет назад

nanohttp in libcsoap allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Authorization header.

GHSA-4qcp-2hxv-7xjm

CVSS3: 7.5

github

больше 3 лет назад

nanohttp in libcsoap allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted Authorization header.