Lucene search
RedhatCVELIST:CVE-2013-4450HistoryOct 21, 2013 - 5:00 p.m.
CVE-2013-4450
2013-10-2117:00:00
redhat
www.cve.org
The HTTP server in Node.js 0.10.x before 0.10.21 and 0.8.x before 0.8.26 allows remote attackers to cause a denial of service (memory and CPU consumption) by sending a large number of pipelined requests without reading the response.
References
blog.nodejs.org/2013/10/18/node-v0-10-21-stable/
blog.nodejs.org/2013/10/18/node-v0-8-26-maintenance/
lists.opensuse.org/opensuse-updates/2013-12/msg00051.html
rhn.redhat.com/errata/RHSA-2013-1842.html
www.openwall.com/lists/oss-security/2013/10/20/1
www.securityfocus.com/bid/63229
github.com/joyent/node/issues/6214
github.com/rapid7/metasploit-framework/pull/2548
groups.google.com/forum/#%21topic/nodejs/NEbweYB0ei0
kb.juniper.net/JSA10783
Related
openvas
openvas
Fedora Update for libuv FEDORA-2013-19491
2013-10-29 00:00:00
Fedora Update for libuv FEDORA-2013-19497
2013-10-29 00:00:00
Fedora Update for nodejs FEDORA-2013-19491
2013-10-29 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:53:41
Denial Of Service (DoS)
2014-09-23 13:51:28
nvd
nvd
CVE-2013-4450
2013-10-21 17:55:03
redhat
redhat
(RHSA-2013:1842) Moderate: nodejs010-nodejs security update
2013-12-16 00:00:00
nessus
nessus
Fedora 19 : libuv-0.10.18-1.fc19 / nodejs-0.10.21-1.fc19 (2013-19497)
2013-10-29 00:00:00
Fedora 20 : libuv-0.10.18-1.fc20 / nodejs-0.10.21-1.fc20 (2013-19512)
2013-11-11 00:00:00
Fedora 18 : libuv-0.10.18-1.fc18 / nodejs-0.10.21-1.fc18 (2013-19491)
2013-10-29 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: libuv-0.10.18-1.fc18
2013-10-29 03:36:07
[SECURITY] Fedora 20 Update: libuv-0.10.18-1.fc20
2013-11-10 07:46:26
[SECURITY] Fedora 19 Update: nodejs-0.10.21-1.fc19
2013-10-29 03:31:33
cve
cve
CVE-2013-4450
2013-10-21 17:55:03
debiancve
debiancve
CVE-2013-4450
2013-10-21 17:55:03
prion
prion
Design/Logic Flaw
2013-10-21 17:55:00
ubuntucve
ubuntucve
CVE-2013-4450
2013-10-21 00:00:00
nodejsblog
nodejsblog
DoS Vulnerability (fixed in Node v0.8.26 and v0.10.21)
2013-10-22 00:00:00
mageia
mageia
Updated nodejs package fixes security vulnerabilities
2014-01-06 05:20:19