CVE-2014-3985

Опубликовано: 11 сент. 2014

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5

Описание

The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote attackers to cause a denial of service (crash) via crafted headers that trigger an out-of-bounds read.

Релиз	Статус	Примечание
devel	not-affected	1.6-4ubuntu1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [1.6-3ubuntu2.14.04.1]]
lucid	DNE
precise	released	1.6-3ubuntu1.1
saucy	released	1.6-3ubuntu2.13.10.1
trusty	released	1.6-3ubuntu2.14.04.1
trusty/esm	DNE	trusty was released [1.6-3ubuntu2.14.04.1]
upstream	released	1.6-4

Показывать по

Ссылки на источники

EPSS

Процентиль: 83%

0.01931

Низкий

5 Medium

CVSS2

Связанные уязвимости

CVE-2014-3985

nvd

больше 11 лет назад

The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote attackers to cause a denial of service (crash) via crafted headers that trigger an out-of-bounds read.

CVE-2014-3985

debian

больше 11 лет назад

The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remo ...

GHSA-jwgg-6gv4-m9cx

github

больше 3 лет назад

The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote attackers to cause a denial of service (crash) via crafted headers that trigger an out-of-bounds read.

EPSS

Процентиль: 83%

0.01931

Низкий

5 Medium

CVSS2

CVE-2014-3985

Описание

Пакет miniupnpc

Ссылки на источники

Связанные уязвимости