Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-0010

Опубликовано: 27 янв. 2010
Источник: redhat
CVSS2: 4.3

Описание

Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size that triggers a heap-based buffer overflow.

Отчет

This issue does not affect the Apache HTTP Server versions 2 and greater. This flaw does not affect any supported versions of Red Hat Enterprise Linux. This flaw does affect Red Hat Network Proxy and Red Hat Network Satellite. While those products do not use this feature, we are tracking the issue with the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0010

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Satellite 4.0ServerWill not fix
Red Hat Satellite 4.1ServerWill not fix
Red Hat Satellite 4.2ServerWill not fix
Red Hat Satellite 5.0ServerWill not fix
Red Hat Satellite Proxy 4.2ServerWill not fix
Red Hat Satellite Proxy 5.0ServerWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-190
https://bugzilla.redhat.com/show_bug.cgi?id=559371rhn-apache: buffer overflow via integer overflow vulnerability on 64bit platforms

4.3 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-0010

ubuntu
почти 16 лет назад

Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size that triggers a heap-based buffer overflow.

nvd логотип

CVE-2010-0010

nvd
почти 16 лет назад

Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size that triggers a heap-based buffer overflow.

debian логотип

CVE-2010-0010

debian
почти 16 лет назад

Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util. ...

github логотип

GHSA-8xvp-wq7g-q2vj

github
больше 3 лет назад

Integer overflow in the ap_proxy_send_fb function in proxy/proxy_util.c in mod_proxy in the Apache HTTP Server before 1.3.42 on 64-bit platforms allows remote origin servers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a large chunk size that triggers a heap-based buffer overflow.

4.3 Medium

CVSS2