CVE-2016-9564

Опубликовано: 30 нояб. 2016

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Buffer overflow in send_redirect() in Boa Webserver 0.92r allows remote attackers to DoS via an HTTP GET request requesting a long URI with only '/' and '.' characters.

Ссылки

http://www.ljcusack.io/cve-2016-9564-stack-based-buffer-overflow-in-boa-0-dot-92r
Exploit
Technical Description
URL Repurposed
http://www.securityfocus.com/bid/94599
http://www.ljcusack.io/cve-2016-9564-stack-based-buffer-overflow-in-boa-0-dot-92r
Exploit
Technical Description
URL Repurposed
http://www.securityfocus.com/bid/94599

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:boa:boa:0.92r:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00622

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

CVE-2016-9564

CVSS3: 7.5

debian

около 9 лет назад

Buffer overflow in send_redirect() in Boa Webserver 0.92r allows remot ...

GHSA-h874-fgv9-3qxw

CVSS3: 7.5

github

больше 3 лет назад

Buffer overflow in send_redirect() in Boa Webserver 0.92r allows remote attackers to DoS via an HTTP GET request requesting a long URI with only '/' and '.' characters.

EPSS

Процентиль: 70%

0.00622

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-20