Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-7039

Опубликовано: 13 дек. 2013
Источник: nvd
CVSS2: 5.1
EPSS Низкий

Описание

Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long URI in an authentication header.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:gnu:libmicrohttpd:*:*:*:*:*:*:*:*
Версия до 0.9.31 (включая)
cpe:2.3:a:gnu:libmicrohttpd:0.9.16:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.17:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.18:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.19:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.20:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.21:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.22:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.23:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.24:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.25:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.26:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.27:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.28:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.29:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libmicrohttpd:0.9.30:*:*:*:*:*:*:*

EPSS

Процентиль: 85%
0.02385
Низкий

5.1 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2013-7039

ubuntu
около 12 лет назад

Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long URI in an authentication header.

redhat логотип

CVE-2013-7039

redhat
около 12 лет назад

Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long URI in an authentication header.

debian логотип

CVE-2013-7039

debian
около 12 лет назад

Stack-based buffer overflow in the MHD_digest_auth_check function in l ...

github логотип

GHSA-xjww-5jpx-q2w4

github
больше 3 лет назад

Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long URI in an authentication header.

suse-cvrf логотип

openSUSE-SU-2017:1676-1

suse-cvrf
больше 8 лет назад

Security update for libmicrohttpd

EPSS

Процентиль: 85%
0.02385
Низкий

5.1 Medium

CVSS2

Дефекты

CWE-119