Описание
Out-of-bounds Read in the send_ssi_file function in civetweb.c in CivetWeb through 1.10 allows attackers to cause a Denial of Service or Information Disclosure via a crafted SSI file.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Ceph Storage 1.3 | ceph | Will not fix | ||
| Red Hat Ceph Storage 2 | ceph | Affected | ||
| Red Hat Ceph Storage 3 | ceph | Affected |
Показывать по
10
Дополнительная информация
Статус:
Moderate
Дефект:
CWE-119
https://bugzilla.redhat.com/show_bug.cgi?id=1595529civetweb: Out-of-bounds read in civetweb.c:send_ssi_file() allows attackers to cause denial of service or information disclosure
5.4 Medium
CVSS3
Связанные уязвимости
CVSS3: 7.1
nvd
больше 7 лет назад
Out-of-bounds Read in the send_ssi_file function in civetweb.c in CivetWeb through 1.10 allows attackers to cause a Denial of Service or Information Disclosure via a crafted SSI file.
CVSS3: 7.1
debian
больше 7 лет назад
Out-of-bounds Read in the send_ssi_file function in civetweb.c in Cive ...
CVSS3: 7.1
github
больше 3 лет назад
Out-of-bounds Read in the send_ssi_file function in civetweb.c in CivetWeb through 1.10 allows attackers to cause a Denial of Service or Information Disclosure via a crafted SSI file.
5.4 Medium
CVSS3