Lucene search
MitreCVE-2009-3663HistoryOct 11, 2009 - 10:30 p.m.
CVE-2009-3663
2009-10-1122:30:00
CWE-134
mitre
web.nvd.nist.gov
24
format string vulnerability
httpdx web server 1.4
denial of service
remote code execution
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
High
EPSS
0.194
Percentile
96.3%
Format string vulnerability in the h_readrequest function in http.c in httpdx Web Server 1.4 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via format string specifiers in the Host header.
Affected configurations
Node
jasperhttpdxMatch1.4
Related
cvelist
cvelist
CVE-2009-3663
2009-10-11 22:00:00
openvas
openvas
httpdx 'h_readrequest()' Host Header Format String Vulnerability
2009-10-23 00:00:00
httpdx 'h_readrequest()' Host Header Format String Vulnerability
2009-10-23 00:00:00
prion
prion
Format string
2009-10-11 22:30:00
exploitdb
exploitdb
httpdx 1.4 - HTTP Server Host Header Remote Format String Denial of Service
2009-09-14 00:00:00
nvd
nvd
CVE-2009-3663
2009-10-11 22:30:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.7
Confidence
High
EPSS
0.194
Percentile
96.3%
Related for CVE-2009-3663