Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2017-16014

Опубликовано: 04 июн. 2018
Источник: debian

Описание

Http-proxy is a proxying library. Because of the way errors are handled in versions before 0.7.0, an attacker that forces an error can crash the server, causing a denial of service.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
node-http-proxynot-affectedpackage

Примечания

  • https://nodesecurity.io/advisories/323

  • https://github.com/nodejitsu/node-http-proxy/pull/101

  • https://github.com/http-party/node-http-proxy/commit/07c8d2ee6017264c3d4deac9f42ca264a3740b48 (v0.7.0)

Связанные уязвимости

redhat логотип

CVE-2017-16014

CVSS3: 7.5
redhat
почти 9 лет назад

Http-proxy is a proxying library. Because of the way errors are handled in versions before 0.7.0, an attacker that forces an error can crash the server, causing a denial of service.

nvd логотип

CVE-2017-16014

CVSS3: 7.5
nvd
больше 7 лет назад

Http-proxy is a proxying library. Because of the way errors are handled in versions before 0.7.0, an attacker that forces an error can crash the server, causing a denial of service.

github логотип

GHSA-9xw9-pvgv-6p76

CVSS3: 7.5
github
около 7 лет назад

Insufficient Error Handling in http-proxy