Lucene search

K
cvelistMitreCVELIST:CVE-2009-3586
HistoryDec 08, 2009 - 6:00 p.m.

CVE-2009-3586

2009-12-0818:00:00
mitre
www.cve.org
3
corehttp buffer overflow vulnerability execution

AI Score

8

Confidence

Low

EPSS

0.053

Percentile

93.1%

Off-by-one error in src/http.c in CoreHTTP 0.5.3.1 and earlier allows remote attackers to cause a denial of service or possibly execute arbitrary code via an HTTP request with a long first line that triggers a buffer overflow. NOTE: this vulnerability reportedly exists because of an incorrect fix for CVE-2007-4060.

AI Score

8

Confidence

Low

EPSS

0.053

Percentile

93.1%