Описание
The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | code not present |
| hardy | not-affected | code not present |
| lucid | not-affected | code not present |
| oneiric | not-affected | code not present |
| precise | not-affected | code not present |
| quantal | not-affected | code not present |
| raring | not-affected | code not present |
| upstream | released | 1.4.1,1.5.0 |
Показывать по
7.5 High
CVSS2
Связанные уязвимости
The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based buffer overflow.
The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx ...
The ngx_http_parse_chunked function in http/ngx_http_parse.c in nginx 1.3.9 through 1.4.0 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a chunked Transfer-Encoding request with a large chunk size, which triggers an integer signedness error and a stack-based buffer overflow.
7.5 High
CVSS2