exploitDog

CVE-2009-4413

Опубликовано: 24 дек. 2009

Источник: ubuntu

Приоритет: medium

CVSS2: 5

Описание

The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12, 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a large Content-Length value, which triggers an integer overflow, a signed-to-unsigned conversion error with a negative value, and a segmentation fault.

Релиз	Статус	Примечание
dapper	ignored	end of life
devel	not-affected
hardy	released	1.0.4-1+lenny1build0.8.04.1
intrepid	released	1.0.4-1+lenny1build0.8.10.1
jaunty	released	1.0.4-1+lenny1build0.9.04.1
karmic	not-affected
upstream	released	1.0.4-1.1

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2009-4413

5 Medium

CVSS2

Связанные уязвимости

CVE-2009-4413

nvd

почти 16 лет назад

The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12, 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a large Content-Length value, which triggers an integer overflow, a signed-to-unsigned conversion error with a negative value, and a segmentation fault.

CVE-2009-4413

debian

почти 16 лет назад

The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12 ...

GHSA-739g-q9wv-464j

github

больше 3 лет назад

The httpClientDiscardBody function in client.c in Polipo 0.9.8, 0.9.12, 1.0.4, and possibly other versions, allows remote attackers to cause a denial of service (crash) via a request with a large Content-Length value, which triggers an integer overflow, a signed-to-unsigned conversion error with a negative value, and a segmentation fault.

BDU:2015-03389

fstec

почти 16 лет назад

Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить доступность защищаемой информации

5 Medium

CVSS2